Published: 30/12/2022 Updated: 11/04/2024

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The patch is identified as dadd1711a617000b70e5e408a76531b73187031c. It is recommended to apply a patch to fix this issue. VDB-217058 is the identifier assigned to this vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
go-macaron csrf -

Debian Bug report logs - #1033115 golang-github-go-macaron-csrf: CVE-2018-25060 Package: src:golang-github-go-macaron-csrf; Maintainer for src:golang-github-go-macaron-csrf is Debian QA Group <packages@qadebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Fri, 17 Mar 2023 14:03:04 UTC Severity: impor ...

CWE-311 https://github.com/go-macaron/csrf/pull/7 https://github.com/go-macaron/csrf/commit/dadd1711a617000b70e5e408a76531b73187031c https://vuldb.com/?ctiid.217058 https://vuldb.com/?id.217058 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033115 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2018-25060

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect