CNNVD-202506-3691 Information

CNNVD ID

CNNVD-202506-3691

Related CVE

CVE-2025-6865

• CNNVD Published: 2025-06-29

Description (Chinese)

DaiCuo（呆错）是中国呆错（DaiCuo）公司的一款基于 ThinkPHP、Bootstrap、Jquery 的自适应后台管理框架。 DaiCuo 1.3.13及之前版本存在安全漏洞，该漏洞源于对文件/admin.php/addon/index的错误操作导致跨站请求伪造。

Description (English)

Daicuo (mistakeful) is a self-adapted backstage regulatory framework based on ChinkPHP, Bootstream, Jquery. DaiCuo 1.3.13 and previous versions contained a security loophole, which originated from an error in the document/admin.php/addon/index resulting in a cross-site request for forgery.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

呆错

Published

2025-06-29

Last Modified

2026-02-24

References

https://vuldb.com/?submit.603563 https://github.com/wwm1995/weiming_wang/blob/main/daicuocms_1.md https://vuldb.com/?id.314337 https://vuldb.com/?ctiid.314337 https://access.redhat.com/security/cve/cve-2025-6865