VYPR
Unrated severityNVD Advisory· Published Apr 25, 2023· Updated Feb 4, 2025

Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint.

CVE-2022-40724

Description

The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery (CSRF) through crafted GET requests.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.