[KIS-2025-14] PKP-WAL <= 3.5.0-1 Login Cross-Site Request Forgery Vulnerability
嗯,用户让我帮忙总结一篇文章,控制在一百个字以内,而且不需要用“文章内容总结”之类的开头。首先,我得仔细阅读这篇文章,了解它的主要内容。 这篇文章看起来是一个安全漏洞的公告。标题提到了PKP-WAL <= 3.5.0-1的登录跨站请求伪造漏洞。内容里提到了受影响的软件版本,比如OJS、OMP和OPS,这些版本在3.3.0-21、3.4.0-9和3.5.0-1及之前都存在漏洞。 漏洞描述说这些应用允许用户在不提供csrfToken的情况下登录,而服务器端没有验证这个参数。这样就可能导致跨站请求伪造攻击。解决方案是升级到特定的版本,比如3.3.0-22、3.4.0-10和3.5.0-2或更高版本。 披露时间线显示从2025年10月到12月之间,厂商被通知、修复问题、发布新版本以及CVE编号的分配。最后还提到了CVE编号是CVE-2025-67892,发现者是Egidio Romano,并附上了原始公告链接。 用户的需求是用中文总结,控制在一百字以内。所以我要提取关键信息:软件名称、漏洞类型、受影响版本、解决方案和CVE编号。 可能需要这样组织语言:“PKP-WAL 3.5.0-1及以下版本存在登录CSRF漏洞,未验证csrfToken参数。建议升级至3.3.0-22、3.4.0-10或3.5.0-2及以上版本。CVE编号为CVE-2025-67892。” 这样刚好控制在一百字以内,并且涵盖了主要信息。 </think> PKP-WAL 3.5.0-1及以下版本存在登录CSRF漏洞,未验证csrfToken参数。建议升级至3.3.0-22、3.4.0-10或3.5.0-2及以上版本。CVE编号为CVE-2025-67892。 2025-12-28 05:19:52 Author: seclists.org(查看原文) 阅读量:11 收藏
fulldisclosure logo

Full Disclosure mailing list archives

From: Egidio Romano <n0b0d13s () gmail com>
Date: Tue, 23 Dec 2025 12:20:56 +0100
-----------------------------------------------------------------
PKP-WAL <= 3.5.0-1 Login Cross-Site Request Forgery Vulnerability
-----------------------------------------------------------------


[-] Software Links:

https://pkp.sfu.ca
https://github.com/pkp/pkp-lib


[-] Affected Versions:

Version 3.3.0-21 and prior versions.
Version 3.4.0-9 and prior versions.
Version 3.5.0-1 and prior versions.


[-] Vulnerability Description:

Open Journal Systems (OJS), Open Monograph Press (OMP), and Open
Preprint Systems (OPS) allow users to perform a login without
providing the “csrfToken” parameter, which is included on the
client-side, but it’s not validated on the server-side. As such, all
these applications are vulnerable to potential “Login Cross-Site
Request Forgery” attacks.


[-] Solution:

Upgrade to versions 3.3.0-22, 3.4.0-10, 3.5.0-2, or later.


[-] Disclosure Timeline:

[21/10/2025] - Vendor notified

[24/10/2025] - Vendor fixed the issue and opened a public GitHub
issue: https://github.com/pkp/pkp-lib/issues/11978

[12/11/2025] - CVE identifier requested

[20/11/2025] - Version 3.3.0-22 released

[22/11/2025] - Version 3.4.0-10 released

[12/12/2025] - CVE identifier assigned

[29/11/2025] - Version 3.5.0-2 released

[23/12/2025] - Publication of this advisory


[-] CVE Reference:

The Common Vulnerabilities and Exposures program (cve.org) has
assigned the name CVE-2025-67892 to this vulnerability.


[-] Credits:

Vulnerability discovered by Egidio Romano.


[-] Original Advisory:

http://karmainsecurity.com/KIS-2025-14
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Current thread:

  • [KIS-2025-14] PKP-WAL <= 3.5.0-1 Login Cross-Site Request Forgery Vulnerability Egidio Romano (Dec 27)

文章来源: https://seclists.org/fulldisclosure/2025/Dec/36
如有侵权请联系:admin#unsafe.sh