GMS-2023-1941: Cross-Site Request Forgery (CSRF)

August 21, 2023

Cross-Site Request Forgery (CSRF) in wallabag/wallabag.

References

github.com/advisories/GHSA-p8gp-899c-jvq9
github.com/wallabag/wallabag/commit/78b0b55c40511e1f22d5bbb4897aa10fca68441c
github.com/wallabag/wallabag/security/advisories/GHSA-p8gp-899c-jvq9
huntr.dev/bounties/4ee0ef74-e4d4-46e7-a05c-076bce522299/

Code Behaviors & Features

Detect and mitigate GMS-2023-1941 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →