CVE-2025-49511 – Civi Framework CSRF

June 10, 2025

CVE ID : CVE-2025-49511

Published : June 10, 2025, 1:15 p.m. | 32 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in uxper Civi Framework allows Cross Site Request Forgery.This issue affects Civi Framework: from n/a through 2.1.6.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-49510 – WooCommerce Min Max Step Quantity Limits Manager CSRF Vulnerability

Next Article CVE-2025-49509 – Roland Beaussant Audio Editor & Recorder Missing Authorization Vulnerability

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

This could be the versatile laptop accessory I’ve been waiting for — Here’s why it stands out from other portable monitors

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Worker Threads in Node.js: A Complete Guide for Multithreading in JavaScript

Everybody’s gone lintin’

QAQ-QQ-AI-QUEST

OneDrive for Mac will soon give you more flexible storage options

OneDrive for Mac will soon give you more flexible storage options

From The Editor’s Desk — new Windows Central community features, we’d like to hear from you!

New code strings attached to Xbox Game Pass suggests a price increase may be imminent

CVE-2025-49511 – Civi Framework CSRF

Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion

Grafana Alert: Medium-Severity Flaw (CVE-2025-3415) Exposes DingDing API Keys

CVE-2025-39413 – David Gwyer Simple Sitemap Missing Authorization Vulnerability

How to Secure Mobile APIs in Flutter

AI-Generated Stock Graphics: The Future or Just a Fad?

CVE-2025-47705 – Drupal IFrame Remove Filter Cross-Site Scripting (XSS)

CVE-2025-2185 – ALBEDO Telecom Net.Time PTP/NTP Clock Authentication Bypass

Raspberry Pi 5 Desktop Mini PC: raspi-config

CVE-2025-4839 – Itwanger Paicoding Cross-Domain Policy Vulnerability

CVE-2025-49511 – Civi Framework CSRF

Related Posts