CVE-2021-23404

Cross-Site Request Forgery (CSRF) in pypi/sqlite-web

Identifiers

CVE-2021-23404

Package Slug

pypi/sqlite-web

Vulnerability

Cross-Site Request Forgery (CSRF)

Description

This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick a user into performing these actions unknowingly through a Cross Site Request Forgery (CSRF) attack.

Affected Versions

All versions

Solution

Unfortunately, there is no solution available yet.

Last Modified

2021-09-16

source