CVE-2023-45884

Cross-Site Request Forgery (CSRF) in npm/openmct

Identifiers

GHSA-4g88-4hgm-m99x, CVE-2023-45884

Package Slug

npm/openmct

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

Cross Site Request Forgery (CSRF) vulnerability in NASA Open MCT (aka openmct) through 3.1.0 allows attackers to view sensitive information via the flexibleLayout plugin.

Affected Versions

All versions up to 3.1.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-11-16

source