Vulnerability CVE-2023-6671
Published: 2023-12-11   Modified: 2023-12-14

Description:
A vulnerability has been discovered on OJS, that consists in a CSRF (Cross-Site Request Forgery) attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated.

Type:

CWE-352

 (Cross-Site Request Forgery (CSRF))

Affected software
Openjournalsystems -> Open journal systems 

 References:
https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-request-forgery-open-journal-systems
Copyright 2024, cxsecurity.com

 

Back to Top