github.com/phachon/mm-wiki is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists in Save
function of user.go
which allows an attacker to execute arbitrary code via the system/user/save parameter.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/phachon/mm-wiki | le | v0.1.2 | |
github.com/phachon/mm-wiki | le | v0.1.2 |