PT-2026-20736 · Unknown · Themastercut Revision Manager Tmc
Nabil Irawan
·
Published
2026-02-19
·
Updated
2026-02-19
·
CVE-2026-25411
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
themastercut Revision Manager TMC versions n/a through 2.8.22
Description
A Cross-Site Request Forgery (CSRF) issue exists in themastercut Revision Manager TMC. This allows attackers to perform actions on behalf of authenticated users without their knowledge. The issue is due to missing CSRF protection.
Recommendations
Update to a version later than 2.8.22.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Themastercut Revision Manager Tmc