CVE-2023-47350: Cross-Site Request Forgery (CSRF)

November 22, 2023 (updated January 24, 2024)

SwiftyEdit Content Management System prior to v1.2.0 is vulnerable to Cross Site Request Forgery (CSRF).

References

github.com/SwiftyEdit/SwiftyEdit/commit/90a6f3df16cd1578b2827d7b2e073451f7ce4e47
github.com/advisories/GHSA-2492-xxqf-6h78
nvd.nist.gov/vuln/detail/CVE-2023-47350

Code Behaviors & Features

Detect and mitigate CVE-2023-47350 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →