Vulnerabilities > Casbin > Casdoor > 1.291.1

DATE CVE VULNERABILITY TITLE RISK
2023-06-22 CVE-2023-34927 Cross-Site Request Forgery (CSRF) vulnerability in Casbin Casdoor
Casdoor v1.331.0 and below was discovered to contain a Cross-Site Request Forgery (CSRF) in the endpoint /api/set-password.
network
low complexity
casbin CWE-352
6.5
6.5