7 matches found
CVE-2024-2134
A vulnerability has been found in Bdtask Hospita AutoManager up to 20240223 and classified as problematic. This vulnerability affects unknown code of the file /investigation/delete/ of the component Investigation Report Handler. The manipulation leads to cross-site request forgery. The attack can...
EUVD-2024-27098
Malicious code in bioql PyPI...
Cross site request forgery (csrf)
A vulnerability has been found in Bdtask Hospita AutoManager up to 20240223 and classified as problematic. This vulnerability affects unknown code of the file /investigation/delete/ of the component Investigation Report Handler. The manipulation leads to cross-site request forgery. The attack can...
CVE-2024-2134 Bdtask Hospita AutoManager Investigation Report cross-site request forgery
A vulnerability has been found in Bdtask Hospita AutoManager up to 20240223 and classified as problematic. This vulnerability affects unknown code of the file /investigation/delete/ of the component Investigation Report Handler. The manipulation leads to cross-site request forgery. The attack can...
CVE-2024-2134 Bdtask Hospita AutoManager Investigation Report cross-site request forgery
A vulnerability has been found in Bdtask Hospita AutoManager up to 20240223 and classified as problematic. This vulnerability affects unknown code of the file /investigation/delete/ of the component Investigation Report Handler. The manipulation leads to cross-site request forgery. The attack can...
PT-2024-18859 · Unknown · Bdtask Hospita Automanager
Name of the Vulnerable Software and Affected Versions: Bdtask Hospita AutoManager up to 20240223 Description: A vulnerability has been found in the Investigation Report Handler component, affecting unknown code of the file "/investigation/delete/". This issue leads to cross-site request forgery a...
New Report on Okta Hack Reveals the Entire Episode LAPSUS$ Attack
An independent security researcher has shared what's a detailed timeline of events that transpired as the notorious LAPSUS$ extortion gang broke into a third-party provider linked to the cyber incident at Okta in late January 2022. In a set of screenshots posted on Twitter, Bill Demirkapi publish...