Minical 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF) via minical/public/application/controllers/settings/company.php.
References
Link | Resource |
---|---|
https://github.com/Thirukrishnan/CVE-2023-33409 | Exploit Third Party Advisory |
https://github.com/minical/minical | Product |
https://github.com/Thirukrishnan/CVE-2023-33409 | Exploit Third Party Advisory |
https://github.com/minical/minical | Product |
Configurations
History
21 Nov 2024, 08:05
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/Thirukrishnan/CVE-2023-33409 - Exploit, Third Party Advisory | |
References | () https://github.com/minical/minical - Product |
09 Jun 2023, 22:45
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CWE | CWE-352 | |
CPE | cpe:2.3:a:minical:minical:1.0.0:*:*:*:*:*:*:* | |
References | (MISC) https://github.com/minical/minical - Product | |
References | (MISC) https://github.com/Thirukrishnan/CVE-2023-33409 - Exploit, Third Party Advisory |
05 Jun 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-05 21:15
Updated : 2024-11-21 08:05
NVD link : CVE-2023-33409
Mitre link : CVE-2023-33409
CVE.ORG link : CVE-2023-33409
JSON object : View
Products Affected
minical
- minical
CWE
CWE-352
Cross-Site Request Forgery (CSRF)