1 results (0.002 seconds)
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41811 – ipl/web susceptible to Cross-Site Request Forgery (CSRF)
https://notcve.org/view.php?id=CVE-2024-41811
05 Aug 2024 — ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. (CSRF). All affected products, in any version, will be unaffected by this once `icinga-php-library` is upgraded. Version 0.10.1 includes a fix for this. • https://github.com/Icinga/ipl-web/commit/492336fdb57a5bb0881ed642ab36f5841337571e • CWE-352: Cross-Site Request Forgery (CSRF) •