5 matches found
CVE-2025-22963
Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin...
CVE-2025-22963
creationtimestamp| type| source ---|---|--- 2025-01-13 15:44:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113821816256658231 2025-01-13 16:15:57+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfn53ajpyf2t 2025-01-13 17:54:47+00:00| seen|...
CVE-2025-22963
Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin...
CVE-2025-22963
CVE-2025-22963 affects Teedy up to version 1.11. The issue is a CSRF vulnerability that permits account takeover via POST /api/user/admin. Several connected sources confirm the affected software and the vulnerable endpoint, with Red Hat/Redundant feeds and PT-2025-4751 noting a workaround (restri...
CVE-2025-22963
Teedy through 1.11 allows CSRF for account takeover via POST /api/user/admin...