CVE-2025-22301

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 7, 2025
CWE ID 352

Summary

CVE-2025-22301 represents a Cross-Site Request Forgery (CSRF) vulnerability affecting the MyBookTable Bookstore application, version n/a through 3.5.3. Hackers can exploit this issue to perform unauthorized actions on behalf of an authenticated user, potentially leading to data manipulation or unintended modifications. This threat arises when the application fails to verify the authenticity of malicious requests. By intercepting a user's session token, attackers can submit specially crafted requests, resulting in unintended consequences. It is crucial for users to apply the necessary patches or updates as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Stormhillmedia Mybook Table Bookstore

Affected Vendors

  • Stormhill Media