CVE-2025-53095 | LizardByte Sunshine 0.16/0.17/0.18.0/0.23.0/2025.118.151840 cross-site request forgery (GHSA-39hj-fxvw-758m)

Inserito da Angelo Barbosa | Lug 1, 2025 | CVE

A vulnerability was found in LizardByte Sunshine 0.16/0.17/0.18.0/0.23.0/2025.118.151840. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2025-53095. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53095 | LizardByte Sunshine 0.16/0.17/0.18.0/0.23.0/2025.118.151840 cross-site request forgery (GHSA-39hj-fxvw-758m)

Post correlati

CVE-2023-49489 | kalcaddle KodeExplorer 4.51 config/i18n/en/main.php APP_HOST cross site scripting

CVE-2025-25504 | Gefen WebFWC 1.70/1.85h/1.86v Service Port 4444 /usr/local/bin/jncs.sh improper authentication

CVE-2024-2321 | WSO2 API Manager/Identity Server Refresh Token authorization

CVE-2024-20396 | Cisco Webex Teams up to 43.4.0.25788 File Protocol information disclosure (cisco-sa-webex-app-ZjNm8X8j)