High severity7.3NVD Advisory· Published Oct 14, 2025· Updated Apr 15, 2026
CVE-2025-60535
CVE-2025-60535
Description
A Cross-Site Request Forgery (CSRF) in the component /endpoints/currency/currency of Wallos v4.1.1 allows attackers to execute arbitrary operations via a crafted GET request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.