CVE-2021-3729

描述

firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)

受影響套件(1)

• Packagist/grumpydictator/firefly-iiifrom 0, < 5.6.0

CVSS 分數

參考連結(4)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2021-3729
• WEBhttps://github.com/firefly-iii/firefly-iii
• WEBhttps://github.com/firefly-iii/firefly-iii/commit/06d319cd71b7787aa919b3ba1ccf51e4ade67712
• WEBhttps://huntr.dev/bounties/d32f3d5a-0738-41ba-89de-34f2a772de76