CNNVD-202508-2727 Information
Aug 22, 2025
cve
CNNVD ID
CNNVD-202508-2727
Related CVE
- CNNVD Published: 2025-08-22
Description (Chinese)
UnoPim是UnoPim开源的一个基于 Laravel 框架的开源产品信息管理(PIM)系统。 UnoPim 0.3.0及之前版本存在安全漏洞,该漏洞源于绕过访问控制,可能导致未授权删除产品。
Description (English)
UnoPim is an open-source product information management (PIM) system based on the Laravel framework. There is a security loophole in UnoPim 0.30 and previous versions, which stems from circumventing access controls and may lead to unauthorized deletion of products.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
UnoPim
Published
2025-08-22
Last Modified
2026-02-24
References
https://www.youtube.com/watch?v=J_WV8fCXlJM https://github.com/unopim/unopim/security/advisories/GHSA-8p2f-fx4q-75cx https://github.com/unopim/unopim/commit/c14eebe653aafd8dc713ca729165177e63315989 https://access.redhat.com/security/cve/cve-2025-55741 https://nvd.nist.gov/vuln/detail/CVE-2025-55741