CNNVD-202511-2685 Information

CNNVD ID

CNNVD-202511-2685

Related CVE

CVE-2025-13576

• CNNVD Published: 2025-11-24

Description (Chinese)

Code-Projects Blog Site是Code-Projects开源的一个博客系统。 Code-Projects Blog Site 1.0版本存在授权问题漏洞，该漏洞源于文件/admin.php中授权不当，可能导致远程攻击。

Description (English)

Code-Projects Blog Site is an open-source blog system for Code-Projects. Version 1.0 of Code-Projects Blog Site has a mandate gap, which stems from inappropriate authorization in document/admin.php and may lead to a remote attack.

Hazard Level

High

Vulnerability Type

授权问题

Affected Vendor

Code-Projects

Published

2025-11-24

Last Modified

2026-02-24

References

https://code-projects.org/ https://vuldb.com/?id.333340 https://vuldb.com/?ctiid.333340 https://vuldb.com/?submit.698772 https://github.com/Yohane-Mashiro/cve/blob/main/Unauthorized.md https://access.redhat.com/security/cve/cve-2025-13576