Vulnerabilities > CVE-2022-3585 - Unspecified vulnerability in Oretnom23 Simple Cold Storage Management System 1.0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

oretnom23

NVD

Published: 2022-10-18

Updated: 2023-12-28

Summary

A vulnerability classified as problematic has been found in SourceCodester Simple Cold Storage Management System 1.0. Affected is an unknown function of the file /csms/?page=contact_us of the component Contact Us. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-211194 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Oretnom23 Oretnom23 Simple Cold Storage Management System 1.0	1

References

https://vuldb.com/?id.211194
https://github.com/souravkr529/CSRF-in-Cold-Storage-Management-System/blob/main/PoC