Lucene search
Veracode Vulnerability DatabaseVERACODE:33151HistoryDec 02, 2021 - 5:29 a.m.
Cross-site Request Forgery (CSRF)
2021-12-0205:29:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
cross-site request forgery
showdoc
anti-csrf protection
attacker site
new group
EPSS
0.001
Percentile
47.7%
showdoc/showdoc is vulnerable to cross-site request forgery. The library does not verify the authenticity of requests due to a lack of anti-CSRF protection, allowing an attacker to create a new group for any item if users visit the attacker site.
Related
nvd
nvd
CVE-2021-4017
2021-12-01 11:15:08
github
github
showdoc is vulnerable to Cross-Site Request Forgery (CSRF)
2021-12-03 20:38:57
osv
osv
showdoc is vulnerable to Cross-Site Request Forgery (CSRF)
2021-12-03 20:38:57
CVE-2021-4017
2021-12-01 11:15:08
cnvd
cnvd
showdoc Cross-site Request Forgery Vulnerability (CNVD-2021-94821)
2021-12-02 00:00:00
cve
cve
CVE-2021-4017
2021-12-01 11:15:08
huntr
huntr
Cross-Site Request Forgery (CSRF) in star7th/showdoc
2021-11-21 03:44:13
prion
prion
Cross site request forgery (csrf)
2021-12-01 11:15:00
cvelist
cvelist
CVE-2021-4017 Cross-Site Request Forgery (CSRF) in star7th/showdoc
2021-12-01 10:15:11