Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Sqlite-web Project Subscribe
Filtered by product Sqlite-web
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-23404 1 Sqlite-web Project 1 Sqlite-web 2021-09-14 6.8 MEDIUM 8.8 HIGH
This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick a user into performing these actions unknowingly through a Cross Site Request Forgery (CSRF) attack.