CNNVD-202509-648 Information
Sep 04, 2025
cve
CNNVD ID
CNNVD-202509-648
Related CVE
- CNNVD Published: 2025-09-04
Description (Chinese)
ELADMIN是elunez个人开发者的一个后台管理系统。 ELADMIN 1.1版本存在授权问题漏洞,该漏洞源于组件LocalStorageController中函数deleteFile授权不当。
Description (English)
ELADMIN is a back-office management system for the personal developers of Elunez. ELADMIN Version 1.1 has a mandate gap, which stems from the inappropriate authorization of the LocalStorageController function deleteFile.
Hazard Level
High
Vulnerability Type
授权问题
Affected Vendor
个人开发者
Published
2025-09-04
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.322339 https://vuldb.com/?id.322339 https://vuldb.com/?submit.643392 https://www.cnblogs.com/aibot/p/19063329
Patch
https://github.com/elunez/eladmin/releases
Share on: