Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2025-47425

🗓️ 15 May 2025 16:15:19Reported by candidateType 
cve
 cve👁 149 Views

CVE-2025-47425 affects Reflex. The vulnerability arises from improper access control in the event handling mechanism, allowing an attacker to modify private state fields and impersonate other users or gain unauthorized admin-like access by guessin...

Related
ReporterTitlePublishedViews
Family
Chainguard		CVE-2025-47425 vulnerabilities
20 May 202501:15
cgr
Github Security Blog		Reflex vulnerable to private state fields modification
15 May 202516:15
github
OSV		CGA-5WQ8-VC6G-466F
29 Jan 202600:46
osv
OSV		CGA-QV5H-GF5F-8XQX
20 May 202500:45
osv
Snyk		Access Control Bypass
15 May 202516:15
snyk
Veracode		Unauthorized State Modification
19 May 202508:12
veracode
Wolfi		CVE-2025-47425 vulnerabilities
20 May 202501:45
wolfi

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
15 May 2025 16:15Current
149