Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 01/02/2024 Updated: 11/04/2024

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

Cross-Site Request Forgery (CSRF) vulnerability in livewire before v3.0.4, allows remote malicious users to execute arbitrary code getCsrfToken function. NOTE: the vendor disputes this because the 5d88731 commit fixes a usability problem (HTTP 419 status codes for legitimate client activity), not a security problem.

Vulnerable Product	Search on Vulmon	Subscribe to Product
laravel livewire

CWE-352 https://github.com/livewire/livewire/commit/5d887316f2aaf83c0e380ac5e72766f19700fa3b https://github.com/github/advisory-database/pull/3490 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-22859

Vulnerability Summary

References

Vulmon Search

About

Products

Connect