CVE-2025-32642

Name of the Vulnerable Software and Affected Versions: Vite Coupon versions 1.0.7 and earlier

Description: The issue is a Cross-Site Request Forgery (CSRF) vulnerability that allows Remote Code Inclusion. This means an attacker can potentially execute malicious code on a remote server, which could lead to various security issues.

Recommendations: For Vite Coupon versions 1.0.7 and earlier, update to a version that includes a fix for this issue, as no specific workaround is provided for these versions. As a temporary workaround, consider implementing additional security measures to prevent CSRF attacks, such as validating request headers and using anti-CSRF tokens, until a patch is available.