A vulnerability, which was classified as problematic, has been found in JIZHICMS up to 1.7.0. Affected by this issue is some unknown functionality of the file /user/userinfo.html of the component Account Profile Page. The manipulation of the argument jifen leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
References
Configurations
No configuration.
History
24 Mar 2025, 14:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/H3rmesk1t/vulnerability-paper/blob/main/jizhiCMS-1.7.0-Incorrect%20Access%20Control.md - |
23 Mar 2025, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-03-23 00:15
Updated : 2025-03-24 14:15
NVD link : CVE-2025-2637
Mitre link : CVE-2025-2637
CVE.ORG link : CVE-2025-2637
JSON object : View
Products Affected
No product.