CVE-2025-62992

HIGH WAF: Low

CVSS 8.1 Published: 2025-12-31

CWE-352

Cross-Site Request Forgery (CSRF) vulnerability in everestthemes Everest Backup everest-backup allows Path Traversal.This issue affects Everest Backup: from n/a through <= 2.3.11.

WAF Coverage Analysis

Cross-Site Request Forgery (CSRF) Low WAF Coverage

OWASP: A01:2021 Broken Access Control

Affected Software

Vendor	Product	Version
everestthemes	everest_backup	up to 2.3.9

References

patchstack.com

Back to CVE Database