PT-2024-19955 · Tvrock · Tvrock
Published
2024-05-01
·
Updated
2024-07-03
·
CVE-2024-23597
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
TvRock version 0.9t8a
Description
A cross-site request forgery (CSRF) issue exists, allowing unintended operations to be performed if a logged-in user accesses a specially crafted page.
Recommendations
For TvRock version 0.9t8a, consider stopping the use of this version as the developer is unreachable and no fix is available.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tvrock