This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an attacker to trick a user into performing these actions unknowingly through a Cross Site Request Forgery (CSRF) attack.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| sqlite-web(PyPI) | 0 | N/A | N/A |
CVSS Metrics
