Lucene search
Veracode Vulnerability DatabaseVERACODE:34105HistoryFeb 09, 2022 - 6:23 a.m.
Cross-Site Request Forgery (CSRF)
2022-02-0906:23:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.001 Low
EPSS
Percentile
30.5%
microweber/microweber is vulnerable to cross-site request forgery(CSRF). The vulnerability exists due to a lack of input sanitization in the api.php file allowing the attacker to manipulate authorized users to initiate unwanted actions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | v1.2.10 | |
| microweber/microweber | le | v1.2.10 |
Related
cnvd
cnvd
microweber cross-site request forgery vulnerability (CNVD-2022-12800)
2022-02-14 00:00:00
osv
osv
Cross-Site Request Forgery in microweber
2022-02-09 00:00:31
CVE-2022-0505
2022-02-08 09:15:08
cve
cve
CVE-2022-0505
2022-02-08 09:15:08
prion
prion
Cross site request forgery (csrf)
2022-02-08 09:15:00
huntr
huntr
Cross-Site Request Forgery (CSRF) in microweber/microweber
2022-01-19 11:56:21
cvelist
cvelist
CVE-2022-0505 Cross-Site Request Forgery (CSRF) in microweber/microweber
2022-02-08 08:55:16
nvd
nvd
CVE-2022-0505
2022-02-08 09:15:08
github
github
Cross-Site Request Forgery in microweber
2022-02-09 00:00:31