Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/13 10:11 p.m.25 views

CVE-2025-4542

A vulnerability, which was classified as problematic, has been found in Freeebird Hotel 酒店管理系统 API up to 1.2. Affected by this issue is some unknown functionality of the file /src/main/java/cn/mafangui/hotel/tool/SessionInterceptor.java. The manipulation leads to permissive cross-domain policy wi...

4.2CVSS7.1AI score0.00228EPSS
Exploits1References1
OSV
OSV
added 2025/05/11 6:15 p.m.3 views

CVE-2025-4542

A vulnerability, which was classified as problematic, has been found in Freeebird Hotel 酒店管理系统 API up to 1.2. Affected by this issue is some unknown functionality of the file /src/main/java/cn/mafangui/hotel/tool/SessionInterceptor.java. The manipulation leads to permissive cross-domain policy wi...

4.2CVSS4.4AI score0.00228EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/05/11 5:31 p.m.9 views

CVE-2025-4542 Freeebird Hotel 酒店管理系统 API SessionInterceptor.java cross-domain policy

A vulnerability, which was classified as problematic, has been found in Freeebird Hotel 酒店管理系统 API up to 1.2. Affected by this issue is some unknown functionality of the file /src/main/java/cn/mafangui/hotel/tool/SessionInterceptor.java. The manipulation leads to permissive cross-domain policy wi...

3.1CVSS3.9AI score0.00228EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/05/11 5:31 p.m.31 views

CVE-2025-4542 Freeebird Hotel 酒店管理系统 API SessionInterceptor.java cross-domain policy

A vulnerability, which was classified as problematic, has been found in Freeebird Hotel 酒店管理系统 API up to 1.2. Affected by this issue is some unknown functionality of the file /src/main/java/cn/mafangui/hotel/tool/SessionInterceptor.java. The manipulation leads to permissive cross-domain policy wi...

3.1CVSS0.00228EPSS
Exploits1References4
CVE
CVE
added 2025/05/11 5:31 p.m.72 views

CVE-2025-4542

CVE-2025-4542 affects Freeebird Hotel 酒店管理系统 API up to version 1.2. The issue is due to the code in /src/main/java/cn/mafangui/hotel/tool/SessionInterceptor.java that permits cross-domain requests from untrusted domains. The vulnerability can be triggered remotely, with high attack complexity and...

4.2CVSS3.9AI score0.00228EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder