CVE-2024-27474
Description
Leantime 3.0.6 is vulnerable to Cross Site Request Forgery (CSRF). This vulnerability allows malicious actors to perform unauthorized actions on behalf of authenticated users, specifically administrators.
NVD
Severity: N/A
CVE ID: CVE-2024-27474
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.
Proof Of Concept
dead1nfluence
CVE-2024-27474, CVE-2024-27476, CVE-2024-27477
Refrence: GitHub