Cross-Site Request Forgery (CSRF) in mosparo/mosparo
CVE-2023-5687

5.4MEDIUM

Key Information:

Vendor

Mosparo

Status
Mosparo/mosparo
Vendor
CVE Published:
20 October 2023

What is CVE-2023-5687?

Cross-Site Request Forgery (CSRF) in GitHub repository mosparo/mosparo prior to 1.0.3.

Affected Version(s)

mosparo/mosparo < 1.0.3

References

https://huntr.com/bounties/33f95510-cdee-460e-8e61-107874...
https://github.com/mosparo/mosparo/commit/fb3ac528b7548be...

CVSS V3.1

Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.