In WS_FTP Server version prior to 8.8.2,
the WS_FTP Server Manager interface was missing cross-site request forgery (CSRF) protection on a POST transaction corresponding to a WS_FTP Server administrative function.
Metrics
Affected Vendors & Products
References
History
Mon, 23 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: ProgressSoftware
Published: 2023-09-27T14:51:35.413Z
Updated: 2024-09-23T15:06:42.221Z
Reserved: 2023-08-08T19:44:41.112Z
Link: CVE-2023-40048
Vulnrichment
Updated: 2024-08-02T18:24:54.878Z
NVD
Status : Modified
Published: 2023-09-27T15:19:00.010
Modified: 2024-11-21T08:18:35.973
Link: CVE-2023-40048
Redhat
No data.