CVE-2025-8529

by Fred · 04/08/2025

A vulnerability classified as critical was found in cloudfavorites favorites-web up to 1.3.0. Affected by this vulnerability is the function getCollectLogoUrl of the file app/src/main/java/com/favorites/web/CollectController.java. The manipulation of the argument url leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

More information : https://github.com/cloudfavorites/favorites-web/issues/134

CVE-2025-8529

Similar

Recent Posts

Categories

CVE-2025-8529

Share this:

Similar

Recent Posts

Categories

Tags