CNNVD-202511-090 Information
CNNVD ID
CNNVD-202511-090
Related CVE
- CNNVD Published: 2025-11-03
Description (Chinese)
fuint是zach个人开发者的一款集店铺收银、线上积分商城、营销一体的系统。 fuint存在安全漏洞,该漏洞源于文件fuint-application/src/main/java/com/fuint/module/clientApi/controller/ClientSignController.java中身份验证令牌处理组件存在缺陷,可能导致授权绕过。
Description (English)
Fuint is a Zach personal developer’s collection of cash, online share and one-stop marketing system. There is a security loophole in Fuint, which stems from deficiencies in the authentication token processing component in document Fuint-Application/src/main/java/com/fuint/module/centApi/controller/ClintSignController.java, which may lead to a circumvention of the authorization.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-11-03
Last Modified
2026-02-24
References
https://github.com/fushengqian/fuint/issues/67 https://vuldb.com/?ctiid.330915 https://vuldb.com/?id.330915 https://vuldb.com/?submit.678911
Share on: