CVE-2023-4304: Froxlor vulnerable to business logic errors

August 11, 2023 (updated December 18, 2023)

Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22

References

github.com/froxlor/froxlor/commit/ce9a5f97a3edb30c7d33878765d3c014a6583597
huntr.dev/bounties/59fe5037-b253-4b0f-be69-1d2e4af8b4a9
nvd.nist.gov/vuln/detail/CVE-2023-4304

Code Behaviors & Features

Detect and mitigate CVE-2023-4304 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →