CNNVD-202509-4460 Information

CNNVD ID

CNNVD-202509-4460

Related CVE

CVE-2025-55797

• CNNVD Published: 2025-09-30

Description (Chinese)

FormCMS是formcms个人开发者的一个页面设计器。 FormCms 0.5.4版本存在安全漏洞，该漏洞源于/api/schemas/history/[schemaId]端点访问控制不当，可能导致未经验证的攻击者访问历史模式数据。

Description (English)

FormCMS is a page designer for the Formcms personal developer. FormCms version 0.5.4 contains a security loophole, which stems from inadequate access controls at the endpoint/api/schemas/history/[schemaId], which may lead to uncertified attackers accessing historical model data.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-30

Last Modified

2026-02-24

References

https://github.com/FormCms https://github.com/FormCms/FormCms https://github.com/KKC73/me/tree/main/CVE-2025-55797

Patch

https://github.com/formcms/formcms/releases