CNNVD-202510-1123 Information
CNNVD ID
CNNVD-202510-1123
Related CVE
- CNNVD Published: 2025-10-08
Description (Chinese)
Casdoor是Casdoor开源的一个支持多种身份验证和授权协议的开源平台。 Casdoor 2.26.0之前版本存在安全漏洞,该漏洞源于权限验证模块和编辑接口存在缺陷,可能导致权限验证绕过。
Description (English)
Casdor is an open-source platform that supports multiple authentication and authorization agreements. There was a security loophole in the pre-Casdor 2.26.0 version, which stemmed from deficiencies in the permission validation module and the editorial interface, which could lead to the authorization validation being bypassed.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Casdoor
Published
2025-10-08
Last Modified
2026-02-24
References
https://gist.github.com/DevHjz/e75cea851d48e5f5478ac2a90757851a http://casdoor.com https://github.com/casdoor/casdoor/commit/d883db907bb6e0b95737ef8e8b57b7da9078cbdd https://github.com/casdoor/casdoor/releases/tag/v2.63.0 https://access.redhat.com/security/cve/cve-2025-61524
Patch
https://github.com/casdoor/casdoor/releases
Share on: