VYPR
Unrated severityNVD Advisory· Published Dec 26, 2023· Updated Sep 12, 2024

CVE-2023-46699

CVE-2023-46699

Description

Cross-site request forgery (CSRF) vulnerability exists in the User settings (/me) page of GROWI versions prior to v6.0.0. If a user views a malicious page while logging in, settings may be changed without the user's intention.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Weseek/Growillm-fuzzy2 versions
    < 6.0.0+ 1 more
    • (no CPE)range: < 6.0.0
    • (no CPE)range: prior to v6.0.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.