Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/23 12:19 a.m.10 views

CVE-2025-25772

A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...

5.1CVSS6.8AI score0.00162EPSS
Exploits1References1
NVD
NVD
added 2025/02/21 7:15 p.m.10 views

CVE-2025-25772

A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...

5.1CVSS0.00162EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/21 12:0 a.m.18 views

CVE-2025-25772

A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...

0.00162EPSS
Exploits1References1
CVE
CVE
added 2025/02/21 12:0 a.m.72 views

CVE-2025-25772

CVE-2025-25772 affects Jspxcms versions 9.0–9.5. A CSRF vulnerability in the /back/UserController.java component could allow an attacker to arbitrarily add Administrator accounts via a crafted request. The CVSS base score is 5.1 (Medium) with local attack vector, low attack complexity, and no use...

5.1CVSS6.5AI score0.00162EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/21 12:0 a.m.6 views

CVE-2025-25772

A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...

6.5AI score0.00162EPSS
Exploits1References1
Rows per page
Query Builder