4 matches found
CVE-2025-28408
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the selectDeptTree method of the /selectDeptTree/deptId endpoint does not properly validate the deptId parameter...
CVE-2025-28408
creationtimestamp| type| source ---|---|--- 2025-04-07 17:12:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmahf6tkmu2w 2025-04-07 18:44:55+00:00| seen| https://t.me/cvedetector/22329 2025-04-08 19:47:37+00:00| published-proof-of-concept|...
CVE-2025-28408
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the selectDeptTree method of the /selectDeptTree/deptId endpoint does not properly validate the deptId parameter...
CVE-2025-28408
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the selectDeptTree method of the /selectDeptTree/deptId endpoint does not properly validate the deptId parameter...