CVE-2025-39593

Name of the Vulnerable Software and Affected Versions Ever Accounting versions n/a through 2.1.5

Description A Cross-Site Request Forgery (CSRF) issue affects Ever Accounting, allowing unauthorized actions to be performed on behalf of a user.

Recommendations For versions n/a through 2.1.5, update to a version later than 2.1.5 to resolve the issue. As a temporary workaround, consider implementing CSRF token validation to prevent unauthorized requests. Restrict access to sensitive functionality to minimize the risk of exploitation.