rdiffweb is vulnerable to cross-site request forgery. The vulnerability exists because the render_prefs_panel
function in pref_notification.py
does not properly handle the password_form
and profile_form
attributes, allowing an attacker to change the email ID of the user by redirecting to the malicious urls.