CVE-2023-40172

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 18, 2023
Updated: Aug 23, 2023
CWE ID 352

Summary

CVE-2023-40172 is a vulnerability affecting the Social media skeleton project before version 1.0.5. This uncompleted social media framework, built using PHP, CSS, JavaScript, and HTML, was susceptible to Cross-Site Request Forgery (CSRF) attacks. In such attacks, an attacker deceives a user into executing unwanted actions on a website. This issue has been rectified in version 1.0.5, and users are encouraged to upgrade as soon as possible. Unfortunately, there are no known workarounds for this vulnerability, making the update the most effective solution.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share