Lucene search
K

6 matches found

OSV
OSV
added 2025/09/30 6:30 p.m.4 views

GHSA-6CWX-42HW-W69C FormCMS has an improper access control vulnerability in the /api/schemas/history/[schemaId] endpoint

An improper access control vulnerability in FormCms v0.5.4 in the /api/schemas/history/schemaId endpoint allows unauthenticated attackers to access historical schema data if a valid schemaId is known or guessed...

6.9CVSS6.9AI score0.00306EPSS
Exploits0References5
Snyk
Snyk
added 2025/09/30 6:30 p.m.5 views

Access Control Bypass

Overview FormCMS is a FormCMS is an open-source Content Management System designed to simplify and accelerate web development workflows for CMS projects and general web applications. It streamlines data modeling, backend development, and frontend design, making them as intuitive as filling out a...

6.9CVSS6.8AI score0.00306EPSS
Exploits0References3
NVD
NVD
added 2025/09/30 4:15 p.m.5 views

CVE-2025-55797

An improper access control vulnerability in FormCms v0.5.4 in the /api/schemas/history/schemaId endpoint allows unauthenticated attackers to access historical schema data if a valid schemaId is known or guessed...

6.5CVSS0.00306EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/30 12:0 a.m.3 views

FormCMS 安全漏洞

FormCMS is a page designer for formcms individual developers. A security vulnerability exists in FormCms version 0.5.4, which stems from improper access control of the /api/schemas/history/schemaId endpoint, which could lead to unauthenticated attackers accessing historical schema data...

6.5CVSS6.5AI score0.00306EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/30 12:0 a.m.2 views

CVE-2025-55797

An improper access control vulnerability in FormCms v0.5.4 in the /api/schemas/history/schemaId endpoint allows unauthenticated attackers to access historical schema data if a valid schemaId is known or guessed...

6.6AI score0.00306EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/30 12:0 a.m.8 views

CVE-2025-55797

An improper access control vulnerability in FormCms v0.5.4 in the /api/schemas/history/schemaId endpoint allows unauthenticated attackers to access historical schema data if a valid schemaId is known or guessed...

0.00306EPSS
Exploits0References3
Rows per page
Query Builder