Name of the Vulnerable Software and Affected Versions SiTex-Госуслуги (affected versions not specified)

Description The issue is related to the lack of a CSRF token in web forms of the SiTex component. This could allow a remote attacker to perform a cross-site request forgery attack, enabling them to make requests on behalf of users, including administrators, by using a specially crafted web page.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.