Aqua Vulnerability Database
Get Demo
Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities
CVE-2023-52555
Published:
Mar 01, 2024
| Modified:
Mar 01, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVD
https://nvd.nist.gov/vuln/detail/CVE-2023-52555
CWE
https://cwe.mitre.org/data/definitions/.html
In mongo-express 1.0.2, /admin allows CSRF, as demonstrated by deletion of a Collection.
References
https://github.com/mongo-express/mongo-express/issues/1338
Aqua Container Security