Description

Incorrect CSRF token checks resulted in multiple CSRF risks.

Remediation

References

CVE-2024-38276

Related Vulnerabilities

jQuery Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-18405)

Plone CMS Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-33509)

phpMyAdmin Improper Input Validation Vulnerability (CVE-2011-0987)

Oracle Application Server Other Vulnerability (CVE-2002-0843)

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20401)

Severity

High

Classification

CVE-2024-38276 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities