CVE-2025-58997

9.6 CRITICAL

Published: September 09, 2025 Modified: April 23, 2026

Description

Cross-Site Request Forgery (CSRF) vulnerability in Frenify Mow mow allows Code Injection.This issue affects Mow: from n/a through <= 4.10.

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Patch Vendor Advisory Exploit Third Party Advisory

Source: audit@patchstack.com

1 reference(s) from NVD

CVSS v3 Score

9.6 / 10.0

EPSS (Exploit Probability)

0.0%

6th percentile

Exploitation Status

Not in CISA KEV

CWE-352