exploitDog

CVE-2025-10086

Опубликовано: 08 сент. 2025

Источник: nvd

CVSS3: 6.3

CVSS2: 6.5

EPSS Низкий

Описание

A weakness has been identified in fuyang_lipengjun platform 1.0.0. This issue affects the function queryAll of the file /adposition/queryAll of the component AdPositionController. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited. Affects another part than CVE-2025-9936.

Ссылки

https://vuldb.com/?ctiid.323042
Permissions Required
VDB Entry
https://vuldb.com/?id.323042
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.644661
Third Party Advisory
VDB Entry
https://www.cnblogs.com/aibot/p/19063427
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fuyang_lipengjun:platform:1.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.0003

Низкий

6.3 Medium

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-266

Связанные уязвимости

GHSA-cfwg-9qf9-56p9

CVSS3: 6.3

github

5 месяцев назад

A weakness has been identified in fuyang_lipengjun platform 1.0.0. This issue affects the function queryAll of the file /adposition/queryAll of the component AdPositionController. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited. Affects another part than CVE-2025-9936.

EPSS

Процентиль: 8%

0.0003

Низкий

6.3 Medium

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-266