CVE-2025-45614 Information

Description

Incorrect access control in the component /api/user/manager of One v1.0 allows attackers to access sensitive information via a crafted payload.

Reference

https://github.com/lcw2004/one/issues/44