CVE-2025-63953 | THREATINT

Description

A Cross-Site Request Forgery (CSRF) in the /usapi?method=add-user component of Magewell Pro Convert v1.2.213 allows attackers to arbitrarily create accounts via a crafted GET request.

PUBLISHED Reserved 2025-10-27 | Published 2025-11-24 | Updated 2025-11-24 | Assigner mitre

References

www.magewell.com

github.com/iyadalkhatib98/My_CVES/tree/main/CVE-2025-63953

cve.org (CVE-2025-63953)

nvd.nist.gov (CVE-2025-63953)

Download JSON