Security Advisory

CVE-2023-27889

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-10 00:00:00

Last updated 2025-01-27 21:03:28

Assigner jpcert

State PUBLISHED

Description

Cross-site request forgery (CSRF) vulnerability in LIQUID SPEECH BALLOON versions prior to 1.2 allows a remote unauthenticated attacker to hijack the authentication of a user and to perform unintended operations by having a user view a malicious page.

← Browse all CVEs View on cve.org ↗