CVE-2025-66906 | THREATINT

Description

Cross Site Request Forgery (CSRF) vulnerability in Turms Admin API thru v0.10.0-SNAPSHOT allows attackers to gain escalated privileges.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-19 | Updated 2025-12-19 | Assigner mitre

References

github.com/..._cve_report/blob/main/CVE-2025-66906_report.md exploit

github.com/turms-im/turms

github.com/..._cve_report/blob/main/CVE-2025-66906_report.md

cve.org (CVE-2025-66906)

nvd.nist.gov (CVE-2025-66906)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu