GMS-2023-2789: Cross-Site Request Forgery (CSRF)

October 2, 2023

Cross-Site Request Forgery (CSRF) in wallabag/wallabag.

References

github.com/advisories/GHSA-56fm-hfp3-x3w3
github.com/wallabag/wallabag/commit/0cfdddc2eb0aee5ffb69bf499d377d75655ba157
github.com/wallabag/wallabag/security/advisories/GHSA-56fm-hfp3-x3w3
huntr.dev/bounties/4c446fe7-2a44-4907-b0cf-4ab77d75c487/

Code Behaviors & Features

Detect and mitigate GMS-2023-2789 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →