Lucene search
Veracode Vulnerability DatabaseVERACODE:38561HistoryDec 22, 2022 - 6:08 a.m.
Cross-Site Request Forgery (CSRF)
2022-12-2206:08:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
erik-dubbelboer
csrf
vulnerability
javascript
execution
remote attackers
software
EPSS
0.003
Percentile
71.3%
erik-dubbelboer/php-redis-admin is vulnerable to cross site request forgery. The vulnerability exists in multiple files, which allows remote attackers to inject and execute malicious JavaScript on a victim’s system.
References
github.com/erikdubbelboer/phpRedisAdmin/commit/b9039adbb264c81333328faa9575ecf8e0d2be94
github.com/erikdubbelboer/phpRedisAdmin/commit/e2348fdba7c124b5128684989ddb788ae388db52
github.com/erikdubbelboer/phpRedisAdmin/pull/188
github.com/erikdubbelboer/phpRedisAdmin/releases/tag/v1.18.0
vuldb.com/?id.216471
Related
cnvd
cnvd
phpRedisAdmin Cross-Site Request Forgery Vulnerability
2022-12-26 00:00:00
osv
osv
CVE-2021-4268
2022-12-21 19:15:13
prion
prion
Cross site request forgery (csrf)
2022-12-21 19:15:00
nvd
nvd
CVE-2021-4268
2022-12-21 19:15:13
cve
cve
CVE-2021-4268
2022-12-21 19:15:13
cvelist
cvelist
CVE-2021-4268 phpRedisAdmin cross-site request forgery
2022-12-21 00:00:00