Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Cross-Site Request Forgery (CSRF) vulnerability in StrangeBee TheHive 5.2.0 before 5.2.16, 5.3.0 before 5.3.11, 5.4.0 before 5.4.10, and 5.5.0 before 5.5.1 allows a remote attacker to trigger requests on their victim's behalf, if the attacker lures a privileged user, authenticated with basic authentication.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
StrangeBee TheHive 跨站请求伪造漏洞
Vulnerability Description
StrangeBee TheHive是StrangeBee公司的一款应用程序。 StrangeBee TheHive 5.5.1之前版本存在跨站请求伪造漏洞,该漏洞源于跨站请求伪造,可能导致特权用户被利用。
CVSS Information
N/A
Vulnerability Type
N/A