A Cross-site Request Forgery (CSRF) vulnerability exists...
High severity
Unreviewed
Published
Apr 22, 2022
to the GitHub Advisory Database
•
Updated Apr 3, 2024
Description
Published by the National Vulnerability Database
Jan 22, 2020
Published to the GitHub Advisory Database
Apr 22, 2022
Last updated
Apr 3, 2024
A Cross-site Request Forgery (CSRF) vulnerability exists in Advanced Electron Forums (AEF) through 1.0.9 due to inadequate confirmation for sensitive transactions in the administrator functions.
References