{"id":"CVE-2022-0088","summary":"Cross-Site Request Forgery (CSRF) in yourls/yourls","details":"Cross-Site Request Forgery (CSRF) in GitHub repository yourls/yourls prior to 1.8.3.","aliases":["GHSA-gx7g-wjxg-jwwj"],"modified":"2026-05-15T04:04:01.268442068Z","published":"2022-04-03T08:50:10Z","database_specific":{"cwe_ids":["CWE-352"],"unresolved_ranges":[{"extracted_events":[{"fixed":"1.8.3"}],"source":"AFFECTED_FIELD"}],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0088.json","cna_assigner":"@huntrdev"},"references":[{"type":"WEB","url":"https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2022-0088.md"},{"type":"WEB","url":"https://huntr.dev/bounties/d01f0726-1a0f-4575-ae17-4b5319b11c29"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/0xxx/CVE-2022-0088.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0088"},{"type":"FIX","url":"https://github.com/yourls/yourls/commit/1de256d8694b0ec7d4df2ac1d5976d4055e09d59"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N"}]}