CVE-2025-67892 | pkp pkp-lib Login csrfToken cross-site request forgery

Uncategorized
Yanac

A vulnerability was found in pkp pkp-lib. It has been declared as problematic. The impacted element is an unknown function of the component Login. Executing manipulation of the argument csrfToken can lead to cross-site request forgery.

The identification of this vulnerability is CVE-2025-67892. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More