2 matches found
CVE-2023-0735 Cross-Site Request Forgery (CSRF) in wallabag/wallabag
Cross-Site Request Forgery CSRF in GitHub repository wallabag/wallabag prior to 2.5.4...
CVE-2023-0735
CVE-2023-0735 is a CSRF vulnerability in wallabag/wallabag, present in versions prior to 2.5.4. Connected documents specify the root cause as a lack of validations in the account/delete functionality, enabling attacker‑initiated actions on behalf of an authenticated user. The sources consistently...