Security Advisory

CVE-2025-29722

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-17 00:00:00
Last updated 2025-04-17 18:19:29
Assigner mitre
State PUBLISHED

Description

A CSRF vulnerability in Commercify v1.0 allows remote attackers to perform unauthorized actions on behalf of authenticated users. The issue exists due to missing CSRF protection on sensitive endpoints.