memos 安全漏洞

memos is an open source hosted memo center with knowledge management and social features. A security vulnerability exists in memos, which can be exploited by an attacker to change a user's language preference...

CSRF to change user language preferences

Description Cross-Site Request Forgery CSRF is an attack that forces authenticated users to submit a request to a Web application against which they are currently authenticated. CSRF attacks exploit the trust a Web application has in an authenticated user Proof of Concept 1 Go to...