CVE-2025-13283 | Chunghwa Telecom TenderDocTransfer prior 0.41.159 cross-site request forgery (EUVD-2025-197759)

Inserito da Angelo Barbosa | Nov 17, 2025 | CVE

A vulnerability was found in Chunghwa Telecom TenderDocTransfer. It has been classified as problematic. Affected is an unknown function. This manipulation causes cross-site request forgery.

This vulnerability is tracked as CVE-2025-13283. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2025-13283 | Chunghwa Telecom TenderDocTransfer prior 0.41.159 cross-site request forgery (EUVD-2025-197759)

Post correlati

CVE-2025-21400 | Microsoft

CVE-2024-45027 | Linux Kernel up to 6.10.6 usb xhci_mem_clearup allocation of resources (770cacc75b00/dcdb52d948f3)

CVE-2023-6307 | jeecgboot JimuReport up to 1.6.1 /download/image imageUrl path traversal

CVE-2025-1306 | spicethemes Newscrunch Plugin up to 1.8.4 on WordPress newscrunch_install_and_activate_plugin cross-site request forgery