PT-2025-53242 · Unknown · Tmtraderunner Trade Runner
Vr0Px
·
Published
2025-12-24
·
Updated
2025-12-29
·
CVE-2025-67625
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
tmtraderunner Trade Runner versions n/a through 3.14
Description
A Cross-Site Request Forgery (CSRF) issue exists in tmtraderunner Trade Runner. This allows attackers to potentially perform actions on behalf of an authenticated user without their knowledge. The issue affects the application by allowing Cross Site Request Forgery attacks.
Recommendations
Versions prior to and including 3.14 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tmtraderunner Trade Runner