PT-2025-43760 · Ajayrandhawa · User-Management-Php-Mysql Web
Lianhaorui
·
Published
2025-10-27
·
Updated
2025-10-27
·
CVE-2025-12202
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
ajayrandhawa User-Management-PHP-MYSQL web (affected versions not specified)
Description
A security flaw exists in ajayrandhawa User-Management-PHP-MYSQL web. The issue involves cross-site request forgery, allowing remote attackers to perform manipulation. The exploit for this issue has been publicly released. The vendor was notified but did not respond. The product uses continuous delivery with rolling releases, and no specific version details for affected or updated releases are available.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Missing Authorization
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
User-Management-Php-Mysql Web