CVE-2024-25808

Publication date

2024-03-22 00:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site Request Forgery (CSRF) vulnerability in Lychee version 3.1.6, allows remote attackers to execute arbitrary code via the create new album function.