EUVD-2023-34986

Malicious code in bioql PyPI...

PT-2024-20585 · Unknown · Icingaweb2-Module-Incubator

Name of the Vulnerable Software and Affected Versions: icingaweb2-module-incubator versions prior to 0.22.0 Description: The issue concerns the class gipflWebForm, which is the base for various concrete form implementations and provides protection against cross-site request forgery CSRF by defaul...

CVE-2023-30607 icingaweb2-module-jira template and field configuration are susceptible to CSRF

icingaweb2-module-jira provides integration with Atlassian Jira. Starting in version 1.3.0 and prior to version 1.3.2, template and field configuration forms perform the deletion action before user input is validated, including the cross site request forgery token. This issue is fixed in version...

CVE-2023-30607 icingaweb2-module-jira template and field configuration are susceptible to CSRF

icingaweb2-module-jira provides integration with Atlassian Jira. Starting in version 1.3.0 and prior to version 1.3.2, template and field configuration forms perform the deletion action before user input is validated, including the cross site request forgery token. This issue is fixed in version...

Atlassian Jira 跨站请求伪造漏洞

Atlassian Jira is a defect tracking management system from Atlassian Australia. The system is mainly used for tracking and managing all kinds of issues and defects in the workplace. Atlassian Jira icingaweb2-module-jira versions prior to 1.3.0 through 1.3.2 are vulnerable to a cross-site request...