06 Nov 2017
CVE-2017-16570 - CVE Vulnerability
KeystoneJS before 4.0.0-beta.7 allows application-wide CSRF bypass by removing the CSRF parameter and value, aka SecureLayer7 issue number SL7_KEYJS_03. In other words, it fails to reject requests that lack an x-csrf-token header. (CVSS:0.0) (Last Update:2017-11-06)
Vulnerability Details : KeystoneJS before 4.0.0-beta.7 allows application-wide CSRF bypass by removing the CSRF parameter and value, aka SecureLayer7 issue number SL7_KEYJS_03. In other words, it fails to reject requests that lack an x-csrf-token header. Publish Date : 2017-11-06 Last Update Date : 2017-11-06 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-16570
- References For CVE-2017-16570
| ||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-16570There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |