← voltar
CVE-2025-28355

CVE-2025-28355

CVSS 4.7 MEDIUMEPSS 0.2%CWE-352
Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery (CSRF) allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to none
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/abbisQQ/CVE-2025-28355/tree/mainhttps://github.com/Volmarg/personal-management-systemhttps://github.com/Volmarg/personal-management-system/issues/149