CNNVD-202508-2605 Information

Aug 21, 2025 cve

CNNVD ID

CNNVD-202508-2605

CVE-2025-55744

CNNVD Published: 2025-08-21

Description (Chinese)

UnoPim是UnoPim开源的一个基于 Laravel 框架的开源产品信息管理（PIM）系统。 UnoPim 0.2.1之前版本存在跨站请求伪造漏洞，该漏洞源于跨站请求伪造漏洞。

Description (English)

UnoPim is an open-source product information management (PIM) system based on the Laravel framework. The previous version of UnoPim 0.2.1 had a false gap in cross-site requests, which originated in cross-site requests.

Hazard Level

High

Vulnerability Type

跨站请求伪造

Affected Vendor

UnoPim

Published

2025-08-21

Last Modified

2026-02-24

References

https://github.com/unopim/unopim/security/advisories/GHSA-287x-6r2h-f9mw https://drive.proton.me/urls/VXNDKQ4WKR#LpvE777hl8OJ https://nvd.nist.gov/vuln/detail/CVE-2025-55744

Patch

https://unopim.com/download/

Share on: