CVE Daily

CVE-2025-36728

Cross-Site Request Forgery (CSRF) vulnerability in Simplehelp.This issue affects...

Medium CVSS 6.3

Overview

Cross-Site Request Forgery (CSRF) vulnerability in Simplehelp.This issue affects Simplehelp: before 5.5.11.

CWE: CWE-352 Published: 2025-07-25T17:15:31.850
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 6.3 (MEDIUM)
  • Detected tags: csrf (tag impact: MODERATE)

Recommended actions:

  • CSRF tokens, SameSite=Strict for cookies, validate Origin/Referer.

Recommended tools

Tags