CVE-2025-3967

Medium CVSS: 5.3

A vulnerability was found in itwanger paicoding 1.0.3. It has been classified as critical. This affects an unknown part of the file /article/api/post of the component Article Handler. The manipulation of the argument articleId leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Itwanger

Product

Paicoding

CWE

CWE-266

Yayın Tarihi

2025-04-27 11:15:16

Güncelleme

2025-05-12 19:08:29

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-266 Paicoding MEDIUM Itwanger 2025

Referanslar

https://github.com/uglory-gll/javasec/blob/main/paicoding.md https://github.com/uglory-gll/javasec/blob/main/paicoding.md#22articleapipost-horizontal-overstepping-of-authority https://vuldb.com/?ctiid.306303 https://vuldb.com/?id.306303 https://vuldb.com/?submit.557251 https://github.com/uglory-gll/javasec/blob/main/paicoding.md

Benzer Kayıtlar

Medium

CVE-2026-3286

A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3. The impacted element is the function Save…

Low

CVE-2025-4839

A vulnerability has been found in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3 and classified as problematic. Affected by…

Medium

CVE-2025-3966

A vulnerability was found in itwanger paicoding 1.0.3 and classified as problematic. Affected by this issue is some unkn…

Medium

CVE-2025-3965

A vulnerability has been found in itwanger paicoding 1.0.3 and classified as problematic. Affected by this vulnerability…