PT-2025-45651 — CSRF in Packagist Drupal Currency

PT-2025-45651 · Packagist · Drupal Currency

Published

2025-10-30

Updated

2025-10-30

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Cross-Site Request Forgery (CSRF) vulnerability in Drupal Currency allows Cross Site Request Forgery. This issue affects Currency: from 0.0.0 before 3.5.0.

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

GHSA-27FV-RPGJ-4C6M

Affected Products

Drupal Currency

PT-2025-45651 · Packagist · Drupal Currency

Weakness Enumeration

Related Identifiers

Affected Products

References · 3