Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:18 a.m.9 views

CVE-2025-1074

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS6.6AI score0.00321EPSS
Exploits1References1
NVD
NVD
added 2025/02/06 2:15 p.m.13 views

CVE-2025-1074

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS0.00321EPSS
Exploits1References4
OSV
OSV
added 2025/02/06 2:15 p.m.4 views

CVE-2025-1074

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS4.4AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/02/06 2:0 p.m.8 views

CVE-2025-1074 Webkul QloApps URL mylogout cross-site request forgery

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS4.6AI score0.00321EPSS
Exploits1References4
CVE
CVE
added 2025/02/06 2:0 p.m.70 views

CVE-2025-1074

Webkul QloApps 1.6.1 is affected by a cross-site request forgery in the URL Handler logout function at /en/?mylogout. The vulnerability stems from the logout endpoint logic, enabling remote CSRF exploitation. Public exploit/disclosures exist and the vendor has been informed and is working on a fi...

5.3CVSS4.7AI score0.00321EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/02/06 2:0 p.m.25 views

CVE-2025-1074 Webkul QloApps URL mylogout cross-site request forgery

A vulnerability, which was classified as problematic, was found in Webkul QloApps 1.6.1. Affected is the function logout of the file /en/?mylogout of the component URL Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been...

5.3CVSS0.00321EPSS
Exploits1References4
Rows per page
Query Builder