CVE-2025-64700 | GROWI up to 7.3.3 cross-site request forgery

December 17, 2025 Yanac

A vulnerability identified as problematic has been detected in GROWI up to 7.3.3. This impacts an unknown function. This manipulation causes cross-site request forgery.

This vulnerability is handled as CVE-2025-64700. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-14081 | Ultimate Member Plugin up to 2.11.0 on WordPress Setting required_perm access control
CVE-2025-14701 | Arcadia Crafty Controller up to 4.6.1 Server MOTD cross site scripting (Issue 647)