Vulnerabilities > Droppy Project > Droppy > 0.9.25
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-31 | CVE-2016-10529 | Cross-Site Request Forgery (CSRF) vulnerability in Droppy Project Droppy Droppy versions <3.5.0 does not perform any verification for cross-domain websocket requests. | 6.8 |