CVE-2023-0674
CVSS v3.1
6.5 (Medium)
CVSS v2.0
5 (Medium)
EPSS
0.08 % (35th)
Affected Products
1
Advisories
1
NVD Status
Modified
A vulnerability, which was classified as problematic, has been found in XXL-JOB 2.3.1. Affected by this issue is some unknown functionality of the file /user/updatePwd of the component New Password Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-220196.
Weaknesses
- CWE-352
- Cross-Site Request Forgery (CSRF)
- CVE Status
- PUBLISHED
- NVD Status
- Modified
- CNA
- VulDB
- Published Date
-
2023-02-04 08:15:08
(19 months ago) - Updated Date
-
2024-05-17 02:17:29
(4 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...