← Back

Sqlite Web

sqlite-web

Vendor: Sqlite Web Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-23404
1Sqlite Web Project
1Sqlite Web
Jun 17, 2026
Sep 8, 2021
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick...Show more
This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick a user into performing these actions unknowingly through a Cross Site Request Forgery (CSRF) attack.Show less