firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
References
Link | Resource |
---|---|
https://github.com/firefly-iii/firefly-iii/commit/c2c8c42ef3194d1aeba8c48240fe2e9063f77635 | Patch Third Party Advisory |
https://huntr.dev/bounties/909e55b6-ef02-4143-92e4-bc3e8397db76 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-10-27T17:45:11
Updated: 2021-10-27T17:45:10
Reserved: 2021-10-23T00:00:00
Link: CVE-2021-3900
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-27T18:15:07.803
Modified: 2021-10-28T15:37:40.687
Link: CVE-2021-3900
JSON object: View
Redhat Information
No data.
CWE