CNNVD-202511-942 Information
CNNVD ID
CNNVD-202511-942
Related CVE
- CNNVD Published: 2025-11-10
Description (Chinese)
SourceCodester Simple Public Chat Room是SourceCodester开源的一个简单的公共聊天室。 SourceCodester Simple Public Chat Room 1.0版本存在安全漏洞,该漏洞源于send_message.php端点未实现CSRF保护机制,可能导致跨站请求伪造攻击。
Description (English)
SourceCodester Simple Public Chat Room is a simple public chat room open to SonceCodester. The security loophole in version 1.0 of SourceCodester Simple Public Chat Room stems from the failure of the send message.php endpoint to implement the CSRF protection mechanism, which may lead to cross-site requests for false attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
SourceCodester
Published
2025-11-10
Last Modified
2026-02-24
References
https://github.com/floccocam-cpu/CVE-Research-2025/blob/main/CVE-2025-63710/README2.md https://www.sourcecodester.com/php/12295/simple-public-chat-room-using-php.html https://access.redhat.com/security/cve/cve-2025-63710
Share on: