High severity8.1NVD Advisory· Published Jun 28, 2024· Updated Jun 17, 2026
CVE-2024-5712
CVE-2024-5712
Description
A Cross-Site Request Forgery (CSRF) vulnerability was identified in the stitionai/devika application, affecting the latest version. This vulnerability allows attackers to perform unauthorized actions in the context of a victim's browser, such as deleting projects or changing application settings, without any CSRF protection implemented. Successful exploitation disrupts the integrity and availability of the application and its data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- stitionai/stitionai/devikav5Range: unspecified
Patches
Vulnerability mechanics
References
1- huntr.com/bounties/301aeafb-af28-4b0b-a2cf-9a2ff1da1ef4nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.