CVE-2022-0088: Cross-Site Request Forgery (CSRF) in yourls/yourls
First published: Sun Apr 03 2022(Updated: )
Cross-Site Request Forgery (CSRF) in GitHub repository yourls/yourls prior to 1.8.3.
Credit: security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Yourls Yourls | <1.8.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this CSRF vulnerability?
The vulnerability ID for this CSRF vulnerability is CVE-2022-0088.
What is the severity of CVE-2022-0088?
The severity of CVE-2022-0088 is high with a severity value of 7.4.
Which software versions are affected by CVE-2022-0088?
The software versions affected by CVE-2022-0088 include Yourls prior to version 1.8.3.
How can I fix CVE-2022-0088?
To fix CVE-2022-0088, update Yourls to version 1.8.3 or later.
Where can I find more information about CVE-2022-0088?
You can find more information about CVE-2022-0088 at the following references: [GitHub commit](https://github.com/yourls/yourls/commit/1de256d8694b0ec7d4df2ac1d5976d4055e09d59), [Huntr.dev bounty](https://huntr.dev/bounties/d01f0726-1a0f-4575-ae17-4b5319b11c29).
- collector/nvd-index
- agent/references
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/title
- agent/last-modified-date
- agent/weakness
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/yourls
- canonical/yourls yourls