CVE-2024-42476 | CORDEA oauth up to 0.10 state cross-site request forgery (GHSA-pc9j-53g7-5×54)

Posted by Angelo Barbosa | Aug 16, 2024 | CVE

A vulnerability classified as problematic has been found in CORDEA oauth up to 0.10. This affects an unknown part. The manipulation of the argument state leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-42476. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42476 | CORDEA oauth up to 0.10 state cross-site request forgery (GHSA-pc9j-53g7-5×54)

Related Posts

CVE-2024-38574 | Linux Kernel up to 6.8.11/6.9.2 libbpf bpf_objec_load_prog null pointer dereference (ef80b59acfa4/1fd91360a758/9bf48fa19a4b)

CVE-2024-23486 | Buffalo WSR-A2533DHP2 cleartext storage

CVE-2024-21098 | Oracle GraalVM Compiler denial of service

CVE-2024-7220 | SourceCodester School Log Management System 1.0 /admin/print_barcode.php tbl sql injection