CVE-2025-58807: CWE-352 Cross-Site Request Forgery (CSRF) in Dsingh Purge Varnish Cache
Severity: highType: vulnerabilityCVE-2025-58807
Cross-Site Request Forgery (CSRF) vulnerability in Dsingh Purge Varnish Cache allows Stored XSS. This issue affects Purge Varnish Cache: from n/a through 2.6.
CVE-2025-58807: CWE-352 Cross-Site Request Forgery (CSRF) in Dsingh Purge Varnish Cache
High
Published: Fri Sep 05 2025 (09/05/2025, 13:45:10 UTC)
Source: CVE Database V5
Vendor/Project: Dsingh
Product: Purge Varnish Cache
Description
Cross-Site Request Forgery (CSRF) vulnerability in Dsingh Purge Varnish Cache allows Stored XSS. This issue affects Purge Varnish Cache: from n/a through 2.6.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Patchstack
- Date Reserved
- 2025-09-05T10:49:12.187Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 68baeaa257c5b37b67a4601b
Added to database: 9/5/2025, 1:50:26 PM
Last updated: 9/5/2025, 1:50:26 PM
Views: 1
Related Threats
CVE-2025-55671: Uncontrolled Search Path Element in kujirahand TkEasyGUI
HighVulnerabilityFri Sep 05 2025
CVE-2025-41408: Improper authorization in handler for custom URL scheme in LY Corporation "Yahoo! Shopping" App for Android
MediumVulnerabilityFri Sep 05 2025
CVE-2025-8695: CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') in Netcad NetGIS Server
MediumVulnerabilityFri Sep 05 2025
CVE-2025-58887: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Course Finder | andré martin - it solutions & research UG Course Booking Platform
MediumVulnerabilityFri Sep 05 2025
CVE-2025-58886: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Tan Nguyen Instant Locations
MediumVulnerabilityFri Sep 05 2025
Actions
Please log in to the Console to use AI analysis features.
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.