CVE-2025-63953 | Magewell Pro Convert 1.2.213 GET Request /usapi?method=add-user cross-site request forgery

Inserito da Angelo Barbosa | Nov 24, 2025 | CVE

A vulnerability marked as problematic has been reported in Magewell Pro Convert 1.2.213. This affects an unknown function of the file /usapi?method=add-user of the component GET Request Handler. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2025-63953. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-63953 | Magewell Pro Convert 1.2.213 GET Request /usapi?method=add-user cross-site request forgery

Post correlati

CVE-2025-5028 | ESET NOD32 Antivirus privileges management

CVE-2025-24376 | kubewarden-controller up to 1.20.x improper authorization (GHSA-fc89-jghx-8pvg)

CVE-2024-52597 | Bubka 2FAuth up to 5.4.0 SVG File cross site scripting (GHSA-q5p4-6q4v-gqg3)

CVE-2025-9949 | Internal Links Manager Plugin up to 3.0.1 on WordPress process_bulk_action cross-site request forgery