CVE-2023-6671

Summary

A vulnerability has been discovered on OJS, that consists in a CSRF (Cross-Site Request Forgery) attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated.

Affected Software

VendorProductVersion RangeStatus
OPEN JOURNAL SYSTEMSOPEN JOURNAL SYSTEMS3.3.0.13affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

References