The Plack::Middleware::XSRFBlock package before 0.0.19 for Perl allows attackers to bypass a CSRF protection mechanism via an empty form value and an empty cookie (if signed cookies are disabled).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-02-13T00:00:00
Updated: 2024-08-02T22:55:41.859Z
Reserved: 2024-02-13T00:00:00
Link: CVE-2023-52431
Vulnrichment
Updated: 2024-08-01T15:50:39.091Z
NVD
Status : Awaiting Analysis
Published: 2024-02-13T05:15:08.797
Modified: 2024-08-01T18:35:05.050
Link: CVE-2023-52431
Redhat
No data.