SecBoard
Zurück zur CVE-Übersicht

CVE-2025-60535

HIGH(7.3)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Risk Signal Score18/100 — NIEDRIG
  • CVSS 7.3 — Hoch

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

7.3

Technische Schwere

Beschreibung

A Cross-Site Request Forgery (CSRF) in the component /endpoints/currency/currency of Wallos v4.1.1 allows attackers to execute arbitrary operations via a crafted GET request.

Referenzen