3 matches found
CVE-2025-4015 20120630 Novel-Plus SessionController.java list missing authentication
A vulnerability was found in 20120630 Novel-Plus up to 0e156c04b4b7ce0563bef6c97af4476fcda8f160. It has been rated as critical. Affected by this issue is the function list of the file novel-system/src/main/java/com/java2nb/system/controller/SessionController.java. The manipulation leads to missin...
CVE-2025-4015 20120630 Novel-Plus SessionController.java list missing authentication
A vulnerability was found in 20120630 Novel-Plus up to 0e156c04b4b7ce0563bef6c97af4476fcda8f160. It has been rated as critical. Affected by this issue is the function list of the file novel-system/src/main/java/com/java2nb/system/controller/SessionController.java. The manipulation leads to missin...
CVE-2025-4015
CVE-2025-4015 affects Novel-Plus versions 20120630 through 0e156c04b4b7ce0563bef6c97af4476fcda8f160. The root cause is an access control error in the function list of SessionController.java, causing missing authentication and enabling remote exploitation. Public exploit disclosure has occurred. A...