Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Play Framework Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2020-12480 - Vulnerability Database
Play Framework

Play Framework Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2020-12480

Medium
Reference: CVE-2020-12480
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-12480
Title: Play Framework Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

In Play Framework 2.6.0 through 2.8.1 the CSRF filter can be bypassed by making CORS simple requests with content types that contain parameters that can39t be parsed.