Lucene search
Veracode Vulnerability DatabaseVERACODE:39244HistoryFeb 13, 2023 - 5:55 a.m.
Cross-Site Request Forgery (CSRF)
2023-02-1305:55:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
wallabag
csrf
validation
account deletion
EPSS
0.001
Percentile
31.0%
wallabag/wallabag is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists due to a lack of validations in the account/delete functionality, which allows an attacker to delete a victims account after convincing a user to click a link.
Related
huntr
huntr
GET based CSRF on delete user functionality
2023-02-04 18:14:41
nvd
nvd
CVE-2023-0735
2023-02-07 23:15:09
prion
prion
Cross site request forgery (csrf)
2023-02-07 23:15:00
osv
osv
Cross-Site Request Forgery (CSRF) in wallabag/wallabag
2023-02-08 00:30:34
CVE-2023-0735
2023-02-07 23:15:09
cvelist
cvelist
CVE-2023-0735 Cross-Site Request Forgery (CSRF) in wallabag/wallabag
2023-02-07 00:00:00
github
github
Cross-Site Request Forgery (CSRF) in wallabag/wallabag
2023-02-08 00:30:34
cve
cve
CVE-2023-0735
2023-02-07 23:15:09