CVE-2025-22814

Name of the Vulnerable Software and Affected Versions Zephyr Admin Theme versions 1.4.1 and earlier

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This can be achieved by tricking the user into performing an unintended action, such as submitting a form or clicking a link.

Recommendations For Zephyr Admin Theme versions 1.4.1 and earlier, consider implementing CSRF tokens or other anti-CSRF measures to prevent exploitation. As a temporary workaround, restrict access to sensitive functionality to minimize the risk of unauthorized actions.