Lucene search
Veracode Vulnerability DatabaseVERACODE:6070HistoryApr 10, 2018 - 5:24 a.m.
Cross-site Request Forgery (CSRF)
2018-04-1005:24:41
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
43.6%
kotti is vulnerable to cross-site request forgery (CSRF) attacks. The vulnerability exists when assigning local roles where a change in permission can occur in the /admin-document/@@share view request.
Related
cve
cve
CVE-2018-9856
2022-10-03 16:21:57
osv
osv
Kotti CSRF in the local roles implementation
2018-07-12 20:30:30
PYSEC-2018-10
2018-04-09 07:29:00
CVE-2018-9856
2018-04-09 07:29:00
prion
prion
Cross site request forgery (csrf)
2018-04-09 07:29:00
nvd
nvd
CVE-2018-9856
2018-04-09 07:29:00
github
github
Kotti CSRF in the local roles implementation
2018-07-12 20:30:30
cvelist
cvelist
CVE-2018-9856
2022-10-03 16:21:57