CVE-2025-1643HIGH 8.8EPSS p25.9%

CVE-2025-1643CVE-2025-1643

Description

A vulnerability was found in Benner ModernaNet up to 1.1.0. It has been rated as problematic. This issue affects some unknown processing of the file /DadosPessoais/SG_AlterarSenha. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. Upgrading to version 1.1.1 is able to address this issue. It is recommended to upgrade the affected component.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS0.34% probability of exploitation · percentile 25.9% · 2026-06-19T12:03:05Z
Published2025-02-25
Last modified2025-02-28

Underlying weaknesses· 2

CWE-352CWE-862

References

  1. https://github.com/yago3008/cves
  2. https://vuldb.com/?ctiid.296693
  3. https://vuldb.com/?id.296693
  4. https://vuldb.com/?submit.500574

2

TypeTargetConfidenceTier
WeaknessCross-Site Request Forgery (CSRF)cwe-3520%live
WeaknessMissing Authorizationcwe-8620%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-1641
CVE
CVE-2025-1640
CVE
CVE-2025-28062
CVE
CVE-2025-4282
CVE
CVE-2025-48921
CVE
CVE-2025-36728
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.