| ID | CVE-2025-46174 | ||||||
| Sažetak | Ruoyi v4.8.0 vulnerable to Incorrect Access Control. There is a missing checkUserDataScope permission check in the resetPwd Method of SysUserController.java. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | None | ||||||
| Zadnje važnije ažuriranje | 26-11-2025 - 16:15 | ||||||
| Objavljeno | 26-11-2025 - 16:15 |
