CNNVD-202512-4271 Information

CNNVD ID

CNNVD-202512-4271

Related CVE

CVE-2019-25242

• CNNVD Published: 2025-12-24

Description (Chinese)

iWT FaceSentry Access Control System是iWT开源的一个应用软件。提供一个访问控制功能。 iWT FaceSentry Access Control System 6.4.8版本存在安全漏洞，该漏洞源于容易受到跨站请求伪造攻击，可能导致执行管理操作。

Description (English)

iWT FaceSentry Access Control System is an iWT open source application. Provides a access control function. iWT FaceSentry Access Control System version 6.4.8 contains a security loophole, which arises from the vulnerability of cross-site requests to forge attacks and may lead to the performance of management operations.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

iWT

Published

2025-12-24

Last Modified

2026-02-24

References

http://www.iwt.com.hk https://www.exploit-db.com/exploits/47065 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2019-5524.php