{"id":"PYSEC-2021-352","details":"furlongm openvpn-monitor through 1.1.3 allows CSRF to disconnect an arbitrary client.","aliases":["CVE-2021-31604","GHSA-vw35-c8hf-fwmq"],"modified":"2026-06-10T17:02:24.814493825Z","published":"2021-09-27T06:15:00Z","references":[{"type":"WEB","url":"http://packetstormsecurity.com/files/164281/OpenVPN-Monitor-1.1.3-Cross-Site-Request-Forgery.html"},{"type":"WEB","url":"https://github.com/furlongm/openvpn-monitor/releases"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-vw35-c8hf-fwmq"}],"affected":[{"package":{"name":"openvpn-monitor","ecosystem":"PyPI","purl":"pkg:pypi/openvpn-monitor"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.0.0","1.1.2","1.1.3","2.0.2","2.0.3","2.0.4"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/openvpn-monitor/PYSEC-2021-352.yaml"}}],"schema_version":"1.7.5"}