Description
The console in Togglz before 2.9.4 allows CSRF.
Remediation
References
https://github.com/advisories/GHSA-697v-pxg3-j262
https://github.com/togglz/togglz/commit/ed66e3f584de954297ebaf98ea4a235286784707
https://github.com/togglz/togglz/pull/495
Related Vulnerabilities
CVE-2022-21810 Vulnerability in npm package smartctl
CVE-2018-19048 Vulnerability in npm package simditor
CVE-2023-26102 Vulnerability in npm package rangy
CVE-2020-1748 Vulnerability in maven package org.wildfly.security:wildfly-elytron
CVE-2017-2598 Vulnerability in maven package org.jenkins-ci.main:jenkins-core