[Attack Vectors] > It was identified Cross-Site Request Forgery (CSRF) vulnerability on the "Run now" button of Schedule tasks functionality. Exploiting this vulnerability, an attacker can run a scheduled task without the victim users consent or knowledge.
Assigned CVE code: > CVE-2025-65593 [Discoverer] > AlterSec t/a PenTest.NZ _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
