CVE-2025-27357

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 24, 2025

CWE ID 352

Summary

CVE-2025-27357 is a Cross-Site Request Forgery (CSRF) vulnerability affecting Musa AVCI Önceki Yazı Link. This issue enables attackers to submit unintended commands to the affected system on behalf of the victim. Successful exploitation could result in unauthorized actions, such as account takeover or data manipulation. The vulnerability exists in versions 1.0 through 1.3 of Önceki Yazı Link, making all users running these versions susceptible to CSRF attacks. It is important for users to update to the latest version or implement appropriate CSRF countermeasures to protect against this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3lypZn
https://www.cve.org/CVERecord?id=CVE-2025-27357
https://nvd.nist.gov/vuln/detail/CVE-2025-27357

Back to Vulnerability Database

CVE-2025-27357

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations