3 matches found
CVE-2023-6671
CVE-2023-6671 describes a Cross-Site Request Forgery (CSRF) vulnerability in Open Journal Systems (OJS). Public records attribute the flaw to CSRF that can cause an end user, while authenticated, to perform unwanted actions in the application. The NVD entry frames the issue in OJS, with a high-se...
CVE-2023-6671 Cross-Site Request Forgery on OPEN JOURNAL SYSTEMS
A vulnerability has been discovered on OJS, that consists in a CSRF Cross-Site Request Forgery attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated...
Trellix Enterprise Security Manager < 11.6.9 Command Injection
The version of Trellix Enterprise Security Manager running on the remote web server is prior to 11.6.9. It is, therefore, affected by a command injection vulnerability. Due to improper neutralization of special elements, a remote attacker, authenticated as an administrator, can execute code as...