CVE-2025-10822

Medium CVSS: 5.3

A vulnerability has been found in fuyang_lipengjun platform 1.0. The impacted element is the function SysSmsLogController of the file /sys/smslog/queryAll. Such manipulation leads to improper authorization. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.

Vendor

Fuyang Lipengjun

Product

Platform

CWE

CWE-266

Yayın Tarihi

2025-09-23 00:15:35

Güncelleme

2025-10-03 17:35:22

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-266 Platform MEDIUM Fuyang Lipengjun 2025

Referanslar

https://vuldb.com/?ctiid.325179 https://vuldb.com/?id.325179 https://vuldb.com/?submit.653743 https://www.cnblogs.com/aibot/p/19063462

Benzer Kayıtlar

High

CVE-2025-57210

Incorrect access control in the component ApiPayController.java of platform v1.0.0 allows attackers to access sensitive…

High

CVE-2025-57212

Incorrect access control in the component ApiOrderService.java of platform v1.0.0 allows attackers to access sensitive i…

High

CVE-2025-57213

Incorrect access control in the component orderService.queryObject of platform v1.0.0 allows attackers to access sensiti…

Medium

CVE-2025-10821

A flaw has been found in fuyang_lipengjun platform 1.0. The affected element is the function TopicCategoryController of…

Medium

CVE-2025-10820

A vulnerability was detected in fuyang_lipengjun platform 1.0. Impacted is the function TopicController of the file /top…

Medium

CVE-2025-10819

A security vulnerability has been detected in fuyang_lipengjun platform 1.0. This issue affects the function UserCouponC…