CVE-2025-14546 | fastapi-sso up to 0.18.x get_login_url cross-site request forgery (ID 266)

Inserito da Angelo Barbosa | Dic 19, 2025 | CVE

A vulnerability marked as problematic has been reported in fastapi-sso up to 0.18.x. Impacted is the function get_login_url. Performing manipulation results in cross-site request forgery.

This vulnerability is identified as CVE-2025-14546. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2025-14546 | fastapi-sso up to 0.18.x get_login_url cross-site request forgery (ID 266)

Post correlati

CVE-2025-9303 | TOTOLINK A720R 4.1.5cu.630_B20250509 /cgi-bin/cstecgi.cgi setParentalRules desc buffer overflow

CVE-2024-54214 | NotFound Revy Plugin up to 1.18 on WordPress unrestricted upload

CVE-2025-4307 | PHPGurukul Art Gallery Management System 1.1 add-art-medium.php artmed sql injection

CVE-2025-64506 | libpng up to 1.6.50 png_write_image_8bit heap-based overflow