Description
The referer field in HTTP requests can be easily modified and, as such, is not a valid means of message integrity checking.
CVE vulnerabilities with CWE-293 (1)
9.0
CVSS
CRITICAL
CVE-2023-20025
pub. 2023-01-20
The referer field in HTTP requests can be easily modified and, as such, is not a valid means of message integrity checking.