CVE-2025-11321 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was detected in zhuimengshaonian wisdom-education up to 1.0.4. The affected element is an unknown function of the file src/main/java/com/educati…
Medium CVSS: 5.3

CVE-2025-11321

A vulnerability was detected in zhuimengshaonian wisdom-education up to 1.0.4. The affected element is an unknown function of the file src/main/java/com/education/api/controller/student/WrongBookController.java. Performing manipulation of the argument subjectId results in authorization bypass. The attack can be initiated remotely. The exploit is now public and may be used.
Vendor
-
Product
-
CWE
CWE-285
Yayın Tarihi
2025-10-06 05:15:34
Güncelleme
2025-10-06 14:56:21
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-285 MEDIUM 2025

Referanslar

https://github.com/xkalami-Tta0/CVE/blob/main/wisdom-education/%E6%B0%B4%E5%B9%B3%E8%B6%8A%E6%9D%832.md https://github.com/xkalami-Tta0/CVE/blob/main/wisdom-education/%E6%B0%B4%E5%B9%B3%E8%B6%8A%E6%9D%832.md#vulnerability-reproduction https://vuldb.com/?ctiid.327202 https://vuldb.com/?id.327202 https://vuldb.com/?submit.664395