CVE-2025-7078 | 07FLYCMS/07FLY-CMS/07FlyCRM up to 1.3.9 cross-site request forgery

Inserito da Angelo Barbosa | Lug 5, 2025 | CVE

A vulnerability classified as problematic was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.3.9. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2025-7078. The attack can be initiated remotely. Furthermore, there is an exploit available.

This product is published under multiple names. The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-7078 | 07FLYCMS/07FLY-CMS/07FlyCRM up to 1.3.9 cross-site request forgery

Post correlati

CVE-2024-37606 | D-Link DCS-932L 2.18.01 HTTP stack-based overflow

CVE-2024-11589 | itsourcecode Tailoring Management System 1.0 /expcatedit.php id sql injection

CVE-2025-0917 | IBM Cognos Analytics up to 12.0.4 cross site scripting

CVE-2024-42326 | Zabbix up to 7.0.3 browser.c es_browser_get_variant use after free