Description

Cross-site request forgery (CSRF) vulnerability in springframework-social before 1.1.3.

Remediation

References

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177420.html

https://bugzilla.redhat.com/show_bug.cgi?id=1305443

Related Vulnerabilities

CVE-2023-30521 Vulnerability in maven package org.jenkins-ci.plugins:assembla-merge-request-builder

CVE-2022-24376 Vulnerability in npm package git-promise

CVE-2017-3160 Vulnerability in npm package cordova-android

CVE-2016-10735 Vulnerability in npm package bootstrap-sass

CVE-2022-37767 Vulnerability in maven package io.pebbletemplates:pebble

Severity

Critical

Classification

CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Third Party Advisory Issue Tracking VDB Entry