CVE-2025-60645 | Xuxueli xxl-api 1.3.0 Management cross-site request forgery (Issue 64)

November 12, 2025 Yanac

A vulnerability described as problematic has been identified in Xuxueli xxl-api 1.3.0. Affected is an unknown function of the component Management Module. The manipulation results in cross-site request forgery.

This vulnerability is reported as CVE-2025-60645. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-56385 | WellSky Harmony 4.1.0.2.83 Login xmHarmony.asp TXTUSERID sql injection
CVE-2025-59491 | CentralSquare CentralSquare Community Development 19.5.7 cross site scripting