VYPR

Vulndb

by Golang

Source repositories

CVEs (1)

  • CVE-2025-47909HigAug 29, 2025
    risk 0.47cvss 7.3epss 0.00

    Hosts listed in TrustedOrigins implicitly allow requests from the corresponding HTTP origins, allowing network MitMs to perform CSRF attacks. After the CVE-2025-24358 fix, a network attacker that places a form at http://example.com can't get it to submit to https://example.com…