漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
The change password functionality at /pet_grooming/admin/change_pass.php in SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks. The application does not implement adequate anti-CSRF tokens or same-site cookie restrictions, allowing attackers to trick authenticated users into unknowingly changing their passwords.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SourceCodester Pet Grooming Management Software 安全漏洞
Vulnerability Description
SourceCodester Pet Grooming Management Software是SourceCodester开源的一个宠物美容管理系统。 SourceCodester Pet Grooming Management Software 1.0版本存在安全漏洞,该漏洞源于未实现足够的反CSRF令牌或同站点Cookie限制,可能导致跨站请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A