A vulnerability has been discovered on OJS, that consists in a CSRF (Cross-Site Request Forgery) attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated.
References
Link | Resource |
---|---|
https://www.incibe.es/en/incibe-cert/notices/aviso/cross-site-request-forgery-open-journal-systems | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: INCIBE
Published: 2023-12-11T13:53:59.380Z
Updated: 2023-12-11T13:53:59.380Z
Reserved: 2023-12-11T08:33:43.156Z
Link: CVE-2023-6671
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-11T14:15:32.150
Modified: 2023-12-13T20:26:53.753
Link: CVE-2023-6671
JSON object: View
Redhat Information
No data.
CWE