CNNVD-202512-3270 Information

CNNVD ID

CNNVD-202512-3270

Related CVE

CVE-2025-67165

• CNNVD Published: 2025-12-17

Description (Chinese)

Pagekit是Pagekit开源的一套模块化的、轻量级CMS（内容管理系统）。 Pagekit 1.0.18版本存在安全漏洞，该漏洞源于存在不安全的直接对象引用，可能导致权限提升。

Description (English)

Pagekit is a modular, lightweight set of CMS (content management system) from the Pagekit open source. There is a security loophole in version 1.0.18 of Pagekit, which stems from the presence of an unsafe direct-object reference, which may lead to increased access.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Pagekit

Published

2025-12-17

Last Modified

2026-02-24

References

https://github.com/mbiesiad/vulnerability-research/tree/main/CVE-2025-67165 https://github.com/pagekit/docs/blob/develop/user-interface/users.md#permissions https://github.com/pagekit/docs/blob/develop/user-interface/users.md#roles https://github.com/pagekit/pagekit https://access.redhat.com/security/cve/cve-2025-67165