5 matches found
Casdoor 安全漏洞
Casdoor is an open-source platform developed by Casdoor that supports various authentication and authorization protocols. Versions of Casdoor prior to 2.362.0 contained security vulnerabilities. These vulnerabilities stemmed from a cross-organizational token exchange issue. The...
CVE-2026-5467
Casdoor 2.356.0 contains a vulnerability in the OAuth Authorization Request Handler where manipulating the redirect_uri enables an open redirect. The issue can be triggered remotely; a public exploit exists. The vendor was contacted but no response. No remediation details are provided in the sour...
Casdoor 安全漏洞
Casdoor is an open source platform from Casdoor Open Source that supports multiple authentication and authorization protocols. A security vulnerability exists in Casdoor versions prior to 2.26.0, which stems from a flaw in the permission validation module and editing interface that could lead to ...
The vulnerability of the application programming interface of the IAM and SSO Casdoor platform allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the application programming interface of the IAM and SSO Casdoor platform relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability may allow a malicious actor, operating remotely, to gain unauthorized access to protected...
The vulnerability of the IAM and SSO Casdoor platform lies in its ability to download files of a malicious nature without limitation. This allows a hacker to download and execute any file on the target system.
The vulnerability of the IAM and SSO Casdoor platform lies in its ability to allow unlimited loading of malicious files. Exploiting this vulnerability could enable a malicious actor, operating remotely, to load and execute any file on the target system...