OSM <= 6.0.1 is vulnerable to Cross Site Request Forgery (CSRF)
-
“Solution
No fix
No patched version is available. No reply from the vendor.Details
Rasi discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress OSM – OpenStreetMap Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. For example a password change which will then allow the malicious actor to login into the admin account. This vulnerability has not been known to be fixed yet.”The page I need help with: [log in to see the link]
- The topic ‘OSM <= 6.0.1 is vulnerable to Cross Site Request Forgery (CSRF)’ is closed to new replies.
