CVE-2025-63717 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The change password functionality at /pet_grooming/admin/change_pass.php in SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross-Site Requ…
Medium CVSS: 6.5

CVE-2025-63717

The change password functionality at /pet_grooming/admin/change_pass.php in SourceCodester Pet Grooming Management Software 1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks. The application does not implement adequate anti-CSRF tokens or same-site cookie restrictions, allowing attackers to trick authenticated users into unknowingly changing their passwords.
Vendor
Mayurik
Product
Pet Grooming Management Software
CWE
CWE-352
Yayın Tarihi
2025-11-07 19:16:26
Güncelleme
2025-11-17 18:40:18
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-352 Pet Grooming Management Software MEDIUM Mayurik 2025

Referanslar

https://github.com/floccocam-cpu/CVE-Research-2025/blob/main/CVE-2025-63717/README6.md https://www.sourcecodester.com/php/18340/pet-grooming-management-software-download.html