Количество 2
Количество 2
CVE-2025-61524
An issue in the permission verification module and organization/application editing interface in Casdoor v2.26.0 and before, and fixed in v.2.63.0, allows remote authenticated administrators of any organization within the system to bypass the system's permission verification mechanism by directly concatenating URLs after login
GHSA-5m9m-j5p7-m7f9
Casdoor is vulnerable to Improper Authorization
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-61524 An issue in the permission verification module and organization/application editing interface in Casdoor v2.26.0 and before, and fixed in v.2.63.0, allows remote authenticated administrators of any organization within the system to bypass the system's permission verification mechanism by directly concatenating URLs after login | CVSS3: 7.2 | 0% Низкий | 4 месяца назад |
| GHSA-5m9m-j5p7-m7f9 Casdoor is vulnerable to Improper Authorization | CVSS3: 7.2 | 0% Низкий | 4 месяца назад |
Уязвимостей на страницу