CVE-2024-42476 | CORDEA oauth up to 0.10 state cross-site request forgery (GHSA-pc9j-53g7-5×54)

Posted by Angelo Barbosa | Aug 16, 2024 | CVE

A vulnerability classified as problematic has been found in CORDEA oauth up to 0.10. This affects an unknown part. The manipulation of the argument state leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-42476. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42476 | CORDEA oauth up to 0.10 state cross-site request forgery (GHSA-pc9j-53g7-5×54)

Related Posts

CVE-2024-43156 | AddonMaster Post Grid Master Plugin up to 3.4.10 on WordPress cross site scripting

CVE-2024-0890 | hongmaple octopus 1.0 /system/dept/edit ancestors sql injection

CVE-2024-0117 | NVIDIA GPU/vGPU/Cloud Gaming prior 16.8/17.4 on Windows User Mode Layer out-of-bounds

CVE-2024-4010 | Icegram Express Email Subscribers Plugin up to 5.7.19 on WordPress handle_ajax_request authorization