CVE-2024-28141

CVSS V2 None CVSS V3 None
Description
The web application is not protected against cross-site request forgery attacks. Therefore, an attacker can trick users into performing actions on the application when they visit an attacker-controlled website or click on a malicious link. E.g. an attacker can forge malicious links to reset the admin password or create new users.
Overview
  • CVE ID
  • CVE-2024-28141
  • Assigner
  • SEC-VLab
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-12-11T15:54:38.151Z
  • Last Modified Date
  • 2024-12-11T17:03:00.983Z
References
History
Created Old Value New Value Data Type Notes
2024-12-12 13:27:11 Added to TrackCVE