Lucene search
Veracode Vulnerability DatabaseVERACODE:32969HistoryNov 15, 2021 - 4:07 a.m.
Cross-site Request Forgery (CSRF)
2021-11-1504:07:35
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
31.0%
grumpydictator/firefly-iii is vulnerable to cross-site request forgery. An attacker could cause unintentional logout on logged-in users via an image tag.
| CPE | Name | Operator | Version |
|---|---|---|---|
| grumpydictator/firefly-iii | le | 5.6.2 | |
| grumpydictator/firefly-iii | le | 5.6.2 |
Related
nvd
nvd
CVE-2021-3921
2021-11-13 09:15:06
cve
cve
CVE-2021-3921
2021-11-13 09:15:06
prion
prion
Cross site request forgery (csrf)
2021-11-13 09:15:00
cnvd
cnvd
firefly-iii cross-site request forgery vulnerability
2021-11-16 00:00:00
osv
osv
CVE-2021-3921
2021-11-13 09:15:06
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
2021-11-15 23:18:00
github
github
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
2021-11-15 23:18:00
huntr
huntr
Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii
2021-11-01 13:56:21
cvelist
cvelist
CVE-2021-3921 Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii
2021-11-13 08:55:12