CVE-2025-25772 | Jspxcms up to 9.5 Request UserController.java cross-site request forgery

Inserito da Angelo Barbosa | Feb 22, 2025 | CVE

A vulnerability was found in Jspxcms up to 9.5 and classified as problematic. This issue affects some unknown processing of the file /back/UserController.java of the component Request Handler. The manipulation leads to cross-site request forgery.

The identification of this vulnerability is CVE-2025-25772. The attack may be initiated remotely. There is no exploit available.

CVE-2025-25772 | Jspxcms up to 9.5 Request UserController.java cross-site request forgery

Post correlati

CVE-2023-25701 | WhatArmy WatchTowerHQ Plugin up to 3.6.16 on WordPress privileges management

CVE-2024-52565 | Siemens Tecnomatix Plant Simulation prior 2302.0018/2404.0007 WRL File out-of-bounds write (ssa-824503)

CVE-2024-40801 | Apple macOS up to 14.6 permission

CVE-2023-36646 | ProLion CryptoSpike 3.0.15P2 REST API Endpoint access control