CVE-2022-38359

Name of the Vulnerable Software and Affected Versions Eyes of Network (affected versions not specified)

Description The issue allows cross-site request forgery attacks against the Eyes of Network web application due to inadequate protections. An attacker can delete the admin user by directing an authenticated user to a crafted link, such as the "https:///module/admin user/index.php?DataTables Table 0 length=10&user selected%5B%5D=1&user mgt list=delete user&action=submit" URL.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.