Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The change password functionality at /pet_grooming/admin/change_pass.php in SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks. The application does not implement adequate anti-CSRF tokens or same-site cookie restrictions, allowing attackers to trick authenticated users into unknowingly changing their passwords.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SourceCodester Pet Grooming Management Software 安全漏洞
Vulnerability Description
SourceCodester Pet Grooming Management Software是SourceCodester开源的一个宠物美容管理系统。 SourceCodester Pet Grooming Management Software 1.0版本存在安全漏洞,该漏洞源于未实现足够的反CSRF令牌或同站点Cookie限制,可能导致跨站请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A