Podatność CVE-2023-6671
Publikacja: 2023-12-11   Modyfikacja: 2023-12-14

Opis:
A vulnerability has been discovered on OJS, that consists in a CSRF (Cross-Site Request Forgery) attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated.

Typ:

CWE-352

 (Cross-Site Request Forgery (CSRF))

Affected software
Openjournalsystems -> Open journal systems 

 Referencje:
https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-request-forgery-open-journal-systems
Copyright 2024, cxsecurity.com

 

Back to Top