4 matches found
CVE-2025-61524
An issue in the permission verification module and organization/application editing interface in Casdoor v2.26.0 and before, and fixed in v.2.63.0, allows remote authenticated administrators of any organization within the system to bypass the system's permission verification mechanism by directly...
CVE-2025-61524
An issue in the permission verification module and organization/application editing interface in Casdoor v2.26.0 and before, and fixed in v.2.63.0, allows remote authenticated administrators of any organization within the system to bypass the system's permission verification mechanism by directly...
CVE-2022-45429
Some Dahua software products have a vulnerability of server-side request forgery SSRF. An Attacker can access internal resources by concatenating links URL that conform to specific rules...
CVE-2018-10799
The affected software is Brave (pre-0.14.0, e.g., on Linux). The issue arises from mishandling a long URL formed via window.location+= '?\u202a\uFEFF\u202b'; in a SCRIPT element, causing a hang/denial of service. Connected sources (Red Hat advisory, NVD entries, CNVD, etc.) confirm the same descr...