CVE-2024-34001
Description
Actions in the admin preset tool did not include the necessary token to prevent a CSRF risk.
CWE
- CWE-352 — CWE-352 Cross-Site Request Forgery (CSRF)
Affected
- / — v=4.0 ≤4.3.3 [affected]; v=4.2 ≤4.2.6 [affected]; v=4.1 ≤4.1.9 [affected]
CVSS
- (none)
References
Source
cvelistV5-main/cves/2024/34xxx/CVE-2024-34001.json