@fraction/oasis is vulnerable to cross-site request forgery (CSRF). An attacker is able to submit requests to the vulnerable application on behalf of a user who visits a malicious website.
CPE | Name | Operator | Version |
---|---|---|---|
@fraction/oasis | le | 2.14.0 | |
@fraction/oasis | le | 2.14.0 |