CVE-2021-4130

Cross-Site Request Forgery (CSRF) in packagist/snipe-it

Identifiers

GHSA-4w23-c97g-fq5v, CVE-2021-4130

Package Slug

packagist/snipe-it

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)

Affected Versions

All versions before 5.3.6

Solution

Upgrade to version 5.3.6 or above.

Last Modified

2022-01-11

source