0.001 Low
EPSS
Percentile
21.6%
play framework is vulnerable to cross-site request forgery (CSRF). An attacker is able to bypass the CSRF filter by making CORS simple requests with content types that contain parameters that are invalid and unable to be parsed.
github.com/advisories/GHSA-cf8j-64h9-6q58
www.playframework.com/security/vulnerability
www.playframework.com/security/vulnerability/CVE-2020-12480-CsrfBlacklistBypass