CVE-2025-27311

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 24, 2025

CWE ID 352

Summary

CVE-2025-27311 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Bulk Content Creator application, version n/a through 1.2.1. A successful exploit of this issue allows an attacker to submit unintended commands in the context of an unsuspecting user. This can lead to unauthorized modifications or actions on the affected system, posing a significant security risk. The CSRF vulnerability in Bulk Content Creator allows an attacker to manipulate the application on behalf of the victim, potentially leading to data theft or unintended changes. Users are advised to update to the latest version of Bulk Content Creator to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database