Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
madeofcode omniauth-facebook 1.4.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4562
The omniauth-facebook gem 1.4.1 prior to 1.5.0 does not properly store the session parameter, which allows remote malicious users to conduct cross-site request forgery (CSRF) attacks via the state parameter.
Madeofcode Omniauth-facebook 1.4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started