CNNVD-202508-262 Information

CNNVD ID

CNNVD-202508-262

Related CVE

CVE-2025-8525

• CNNVD Published: 2025-08-04

Description (Chinese)

XBoot是Exrick个人开发者的一个一站式前后端分离快速开发平台。 XBoot 3.3.4及之前版本存在访问控制错误漏洞，该漏洞源于信息泄露，攻击者无需认证即可获取敏感信息。

Description (English)

XBoot is a one-stop, back-to-back, back-end, rapid development platform for Exrick personal developers. XBoot 3.3.4 and previous versions had access control error holes, which originated in the disclosure of information and allowed the assailant to access sensitive information without authentication.

Hazard Level

High

Vulnerability Type

访问控制错误

Affected Vendor

个人开发者

Published

2025-08-04

Last Modified

2026-02-24

References

https://vuldb.com/?submit.622172 https://github.com/Exrick/xboot/issues/72 https://vuldb.com/?ctiid.318651 https://github.com/Exrick/xboot/issues/72#issue-3252465914 https://vuldb.com/?id.318651 https://access.redhat.com/security/cve/cve-2025-8525 https://nvd.nist.gov/vuln/detail/CVE-2025-8525