A vulnerability was found in withstars Books-Management-System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /reader_delete.html. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://github.com/caigo8/CVE-md/blob/main/Books-Management-System/CSRF.md | Exploit |
| https://github.com/caigo8/CVE-md/blob/main/Books-Management-System/CSRF.md | Exploit |
| https://vuldb.com/?ctiid.306295 | Permissions Required VDB Entry |
| https://vuldb.com/?id.306295 | Third Party Advisory VDB Entry |
| https://vuldb.com/?submit.557147 | Third Party Advisory VDB Entry |
Configurations
History
12 May 2025, 19:24
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-352 | |
| CPE | cpe:2.3:a:withstars:books-management-system:1.0:*:*:*:*:*:*:* | |
| First Time |
Withstars books-management-system
Withstars |
|
| References | () https://github.com/caigo8/CVE-md/blob/main/Books-Management-System/CSRF.md - Exploit | |
| References | () https://vuldb.com/?ctiid.306295 - Permissions Required, VDB Entry | |
| References | () https://vuldb.com/?id.306295 - Third Party Advisory, VDB Entry | |
| References | () https://vuldb.com/?submit.557147 - Third Party Advisory, VDB Entry |
28 Apr 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
| CWE | CWE-862 |
27 Apr 2025, 05:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-04-27 05:15
Updated : 2025-05-12 19:24
NVD link : CVE-2025-3959
Mitre link : CVE-2025-3959
JSON object : View
Products Affected
withstars
- books-management-system
CWE
CWE-352
Cross-Site Request Forgery (CSRF)