Medium severity5.4NVD Advisory· Published Apr 25, 2025· Updated Jun 17, 2026
CVE-2025-46547
CVE-2025-46547
Description
In Sherpa Orchestrator 141851, the web application lacks protection against CSRF attacks, with resultant effects of an attacker conducting XSS attacks, adding a new user or role, or exploiting a SQL injection issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2141851+ 1 more
- (no CPE)range: 141851
- (no CPE)range: 141851
Patches
Vulnerability mechanics
References
4- gist.github.com/ArtemBrylev/9af206c46d7505db03ad6fcd9fc46f7fnvdThird Party Advisory
- deiteriy.comnvdNot Applicable
- sherparpa.comnvdProduct
- twitter.com/ArtyomBrylevnvdNot Applicable
News mentions
0No linked articles in our index yet.