Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:33463
HistoryDec 27, 2021 - 3:45 p.m.

Cross-site Request Forgery (CSRF)

2021-12-2715:45:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
archivy
csrf
vulnerability
dataobj
delete
route
software

EPSS

0.001

Percentile

31.5%

JSON

archivy is vulnerable to cross-site request forgery. The vulnerability exists in the route /dataobj/delete/ of routes.py because the csrf token is not verified which allows an attacker to delete user’s notes.

Related

prion 1
github 1
osv 3
nvd 1
cvelist 1
huntr 1
cve 1
prion
prion
Cross site request forgery (csrf)
2021-12-25 12:15:00
github
github
archivy is vulnerable to Cross-Site Request Forgery (CSRF)
2022-01-06 21:59:50
osv
osv
PYSEC-2021-869
2021-12-25 12:15:00
CVE-2021-4162
2021-12-25 12:15:17
archivy is vulnerable to Cross-Site Request Forgery (CSRF)
2022-01-06 21:59:50
nvd
nvd
CVE-2021-4162
2021-12-25 12:15:17
cvelist
cvelist
CVE-2021-4162 Cross-Site Request Forgery (CSRF) in archivy/archivy
2021-12-25 11:20:09
huntr
huntr
Cross-Site Request Forgery (CSRF) in archivy/archivy
2021-12-22 06:32:35
cve
cve
CVE-2021-4162
2021-12-25 12:15:17

EPSS

0.001

Percentile

31.5%

JSON
Related for VERACODE:33463
prion1github1osv3nvd1cvelist1huntr1cve1