Description

The SourceCodester Leads Manager Tool v1.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks that allow unauthorized state-changing operations. The application lacks CSRF protection mechanisms such as anti-CSRF tokens or same-origin verification for critical endpoints.

INFO

Published Date :

2025-11-07T00:00:00.000Z

Last Modified :

2025-11-12T19:51:49.558Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-63716 vulnerability.

Vendors Products
Rems
  • Leads Manager Tool
Sourcecodester
  • Leads Manager Tool
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-63716.

URL Resource
https://github.com/floccocam-cpu/CVE-Research-2025/blob/main/CVE-2025-63716/README5.md cve-icon cve-icon
https://www.sourcecodester.com/php/17510/leads-manager-tool-using-php-and-mysql-source-code.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact