Maven package
org.owasp/csrfguard
pkg:maven/org.owasp/csrfguard
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28490 | Hig | 8.8 | < 4.0.0 | 4.0.0 | Aug 19, 2021 | In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token. |
- affected < 4.0.0fixed 4.0.0
In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token.