4 matches found
CVE-2025-28410
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the cancelAuthUserAll method does not properly validate whether the requesting user has administrative privileges...
CVE-2025-28410
creationtimestamp| type| source ---|---|--- 2025-04-07 17:12:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmahf4z2wi2z 2025-04-07 18:44:44+00:00| seen| https://t.me/cvedetector/22320 2025-08-09 17:25:38+00:00| seen| MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea 2025-09-10...
CVE-2025-28410
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the cancelAuthUserAll method does not properly validate whether the requesting user has administrative privileges...
CVE-2025-28410
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the cancelAuthUserAll method does not properly validate whether the requesting user has administrative privileges...