Skip to content

scap3sh4rk/CVE-2025-66683

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
CVE-public-disclosure.md
CVE-public-disclosure.md
 
 
README.md
README.md
 
 

Repository files navigation

CVE-2025-66683

A Cross-Site Request Forgery (CSRF) vulnerability exists in the administrator profile update functionality of CarRentalMS v2.0. The affected endpoint does not implement anti-CSRF protections, allowing an attacker to perform unauthorized profile modifications on behalf of an authenticated administrator via crafted HTML content.

About

A Cross-Site Request Forgery (CSRF) vulnerability exists in the administrator profile update functionality of CarRentalMS v2.0. The affected endpoint does not implement anti-CSRF protections, allowing an attacker to perform unauthorized profile modifications on behalf of an authenticated administrator via crafted HTML content.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors