CVE-2023-5498
MEDIUMchiefonboarding < 2.0.47 - Cross-Site Request Forgery
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2023-5498. PoCs published by tomorroisnew.
Description
Cross-Site Request Forgery (CSRF) in GitHub repository chiefonboarding/chiefonboarding prior to v2.0.47.
Exploits (1)
github
NO CODE
2 stars
by tomorroisnew · poc
https://github.com/tomorroisnew/CVE/tree/main/CVE-2023-5498
References (2)
Core 2
Core References
Patch
https://github.com/chiefonboarding/chiefonboarding/commit/7de93f5fcc21e8f16fa0a64d38461c1b48ff3ee7
Exploit, Third Party Advisory
https://huntr.dev/bounties/ec367b1d-5ec4-4ab2-881a-caf82e4877d9
Scores
CVSS v3
4.3
EPSS
0.0024
EPSS Percentile
14.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-352
Status
published
Products (1)
chiefonboarding/chiefonboarding
< 2.0.47
Published
Oct 10, 2023
Tracked Since
Feb 18, 2026