Lightbend - Play Framework CVE

Filtered by vendor Lightbend Subscribe

Filtered by product Play Framework

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-12480	1 Lightbend	1 Play Framework	2020-08-24	4.3 MEDIUM	6.5 MEDIUM
In Play Framework 2.6.0 through 2.8.1, the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can't be parsed.

Vulnerabilities (CVE)