Owasp Csrfguard 4.0 Release Candidate 1

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:owasp:csrfguard:4.0:rc1:*:*:*:*:*:*

part: a version: 4.0 update: rc1

VendorOwasp (b778b703-6f88-5eeb-b966-330b456a6d00)
ProductCsrfguard (a2526008-9906-517e-b898-6941f5a1de49)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:github/owasp/www-project-csrfguard purl2cpe 2026-06-01 10:12:06.977345
pkg:maven/org.owasp/csrfguard purl2cpe 2026-06-01 10:12:06.977347

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-28490 vulnerable 2026-06-03 14:44:18.344998 Details available
In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token.
Published: 2021-08-19T18:44:38.000Z
Updated: 2024-08-03T21:47:32.871Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.