Medium severity4.3NVD Advisory· Published Jun 26, 2025· Updated Jun 17, 2026
CVE-2025-48497
CVE-2025-48497
Description
Cross-site request forgery vulnerability exists in iroha Board versions v0.10.12 and earlier. If a user accesses a specially crafted URL while being logged in to the affected product, arbitrary learning histories may be registered.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=v0.10.12
- iroha Soft Co., Ltd./iroha Boardv5Range: versions v0.10.12 and earlier
Patches
Vulnerability mechanics
References
2- irohaboard.irohasoft.jp/security/nvdThird Party Advisory
- jvn.jp/en/jp/JVN92520966/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.