CVE-2025-53642 | haxcms-nodejs.operations/haxcms-php.operations prior 11.0.6 Refresh Token logout session expiration (GHSA-g4f5-5w5j-p5jg)

A vulnerability was found in haxcms-nodejs.operations and haxcms-php.operations. It has been declared as problematic. This vulnerability affects the function Logout of the component Refresh Token Handler. The manipulation leads to session expiration.

This vulnerability was named CVE-2025-53642. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More