CVE-2025-4375 – Sparx Systems Pro Cloud Server CSRF Session Hijacking

May 9, 2025

CVE ID : CVE-2025-4375

Published : May 9, 2025, 6:15 a.m. | 25 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in Sparx Systems Pro Cloud Server allows Cross-Site Request Forgery to perform Session Hijacking. Cross-Site Request Forgery is present at the whole application but it can be used to change the Pro Cloud Server Configuration password.
This issue affects Pro Cloud Server: earlier than 6.0.165.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4376 – Sparx Systems Pro Cloud Server Cross-Site Scripting (XSS)

Next Article CVE-2025-3463 – “ASUS DriverHub HTTP Request Validation Vulnerability”

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Your password manager is under attack, and this new threat makes it worse: How to defend yourself

EcoFlow’s new backyard solar energy system starts at $599 – no installation crews or permits needed

Why Sonos’ cheapest smart speaker is one of my favorites – even a year after its release

7 productivity gadgets I can’t live without (and why they make such a big difference)

Tap into Your PHP Potential with Free Projects at PHPGurukul

Tap into Your PHP Potential with Free Projects at PHPGurukul

Preparing for AI? Here’s How PIM Gets Your Data in Shape

A Closer Look at the AI Assistant of Oracle Analytics

kew v3.2.0 improves internet radio support and more

kew v3.2.0 improves internet radio support and more

GNOME Replace Totem Video Player with Showtime

Placemark is a web-based tool for geospatial data

CVE-2025-4375 – Sparx Systems Pro Cloud Server CSRF Session Hijacking

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-4487 – iSourcecode Gym Management System SQL Injection Vulnerability

Studio behind Hi-Fi Rush rebrands — its first post since being closed down by Xbox

Is Automated Hallucination Detection in LLMs Feasible? A Theoretical and Empirical Investigation

LIVE: Where to buy NVIDIA GeForce RTX 5090 and RTX 5080: Retailers with stock for today’s GPU launch

Windows 11 isnâ€™t losing market share to Windows 10 as it gains more users

Blast-RADIUS Vulnerability Affects Widely-Used RADIUS Authentication Protocol

Australian Mining Giant Evolution Mining Hit by Ransomware Attack

Distribution Release: Xubuntu 25.04

Pongal Celebrations at Perficient Towers on 9th January 2025

CVE-2025-4375 – Sparx Systems Pro Cloud Server CSRF Session Hijacking

Related Posts