withstars Books-Management-System Article del cross-site request forgery

A vulnerability, which was classified as problematic, was found in withstars Books-Management-System 1.0. Affected is an unknown function of the file /api/article/del of the component Article Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

跨站请求伪造(CSRF)

Books-Management-System 安全漏洞

Books-Management-System是withstars个人开发者的一个图书管理系统。 Books-Management-System 1.0版本存在安全漏洞，该漏洞源于文件/api/article/del的错误操作导致跨站请求伪造。

N/A

N/A