CNNVD-202508-2965 Information

CNNVD ID

CNNVD-202508-2965

Related CVE

CVE-2024-46412

• CNNVD Published: 2025-08-25

Description (Chinese)

Rebuild是getrebuild开源的一个高度可定制化的企业管理系统。 Rebuild v3.7.7版本存在安全漏洞，该漏洞源于prehandle函数访问控制不当，可能导致通过特制GET请求绕过身份验证。

Description (English)

Rebuild is a highly customized enterprise management system for the open source of Getrebuild. Release Rebuild v3.7.7 contains a security loophole, which stems from the inappropriate access controls of the Prehandle function, which may result in requests to circumvent identification through the specially designed GET.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

getrebuild

Published

2025-08-25

Last Modified

2026-02-24

References

https://github.com/RacerZ-fighting/rebuild-vulns/blob/main/rebuild%203.7.7.md https://github.com/RacerZ-fighting/CVE-vulns/blob/main/rebuild%203.7.5.md https://nvd.nist.gov/vuln/detail/CVE-2024-46412

Patch

https://github.com/getrebuild/rebuild/releases