CVE-2023-52555 | mongo-express 1.0.2 Collection /admin cross-site request forgery (Issue 1338)

Inserito da Angelo Barbosa | Mar 1, 2024 | CVE

A vulnerability, which was classified as problematic, was found in mongo-express 1.0.2. Affected is an unknown function of the file /admin of the component Collection Handler. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2023-52555. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-52555 | mongo-express 1.0.2 Collection /admin cross-site request forgery (Issue 1338)

Post correlati

CVE-2024-21885 | X.org X11 Server XISendDeviceHierarchyEvent heap-based overflow

CVE-2023-1577 | Lenovo Driver Manager prior 3.1.1307.1308 input validation

CVE-2024-5809 | WP Ajax Contact Form Plugin up to 2.2.2 on WordPress cross site scripting

CVE-2023-22439 | Gallagher Controller 6000/Controller 7000 Web Interface denial of service