← Back to CVE List
CVE-2022-30694
The login endpoint /FormLogin in affected web services does not apply proper origin checking.
This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt