CVE-2023-47024|Cross-Site Request Forgery (CSRF) in...

Cross-Site Request Forgery (CSRF) in... CVE-2023-47024

- AV AC AU C I A

发布： 2024-01-20

修订： 2024-02-10

CWE-352
linuxnetwork

Cross-Site Request Forgery (CSRF) in NCR Terminal Handler v.1.5.1 leads to a one-click account takeover. This is achieved by exploiting multiple vulnerabilities, including an undisclosed function in the WSDL that has weak security controls and can accept custom content types.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

Cross-Site Request Forgery (CSRF) in... CVE-2023-47024

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单