Moderate severityNVD Advisory· Published Mar 1, 2024· Updated Aug 29, 2024
CVE-2023-52555
CVE-2023-52555
Description
In mongo-express 1.0.2, /admin allows CSRF, as demonstrated by deletion of a Collection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mongo-expressnpm | <= 1.0.2 | — |
Affected products
2- mongo-express/mongo-expressdescription
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.