Lucene search
Veracode Vulnerability DatabaseVERACODE:33153HistoryDec 02, 2021 - 9:10 a.m.
Cross-site Request Forgery (CSRF)
2021-12-0209:10:33
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
0.001 Low
EPSS
Percentile
30.0%
grumpydictator/firefly-iii is vulnerable to cross-site request forgery. The vulnerability is capable of tricking users to switch transaction links and unknowingly perform unwanted actions on malicious websites.
| CPE | Name | Operator | Version |
|---|---|---|---|
| grumpydictator/firefly-iii | le | 5.6.5 | |
| grumpydictator/firefly-iii | le | 5.6.5 |
Related
osv
osv
CVE-2021-4015
2021-12-01 11:15:08
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
2021-12-06 17:19:18
cve
cve
CVE-2021-4015
2021-12-01 11:15:08
huntr
huntr
Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii
2021-11-23 12:59:39
cvelist
cvelist
CVE-2021-4015 Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii
2021-12-01 10:20:11
nvd
nvd
CVE-2021-4015
2021-12-01 11:15:08
github
github
firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)
2021-12-06 17:19:18
prion
prion
Cross site request forgery (csrf)
2021-12-01 11:15:00