Lucene search
Veracode Vulnerability DatabaseVERACODE:38924HistoryJan 19, 2023 - 7:30 a.m.
Cross-Site Request Forgery (CSRF)
2023-01-1907:30:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
cross-site request forgery
csrf
validation bypass
web socket
main.go
github vulnerability
0.001 Low
EPSS
Percentile
44.4%
github.com/destinygg/chat is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists due to lack of validation of in the web socket function in main.go which allows an attacker to bypass CSRF protection.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/destinygg/chat | eq | HEAD | |
| github.com/destinygg/chat | eq | HEAD |
Related
osv
osv
destiny.gg chat vulnerable to cross-site request forgery
2022-12-22 12:30:17
CVE-2020-36625
2022-12-22 10:15:09
github
github
destiny.gg chat vulnerable to cross-site request forgery
2022-12-22 12:30:17
cve
cve
CVE-2020-36625
2022-12-22 10:15:09
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2022-12-22 10:15:00
nvd
nvd
CVE-2020-36625
2022-12-22 10:15:09
vulnrichment
vulnrichment