YXJ2018 SpringBoot-Vue-OnlineExam 1.0 API ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ

Rakkoon nageenyaa kan ଜଟିଳ jedhamuun beekamu YXJ2018 SpringBoot-Vue-OnlineExam 1.0 keessatti argameera. Miidhamni argame is hojii hin beekamne kutaa API keessa. Wanti jijjiirame gara ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ geessa. Rakkoo ibsuuf CWE yoo fayyadamte gara CWE-287 si geessa. Odeeffannoon kun yeroo 04/21/2025 maxxanfameera akka 73/75/76. Odeeffannoon kun buufachuuf github.com irratti argama. Dogoggorri kun CVE-2025-3850 jedhamee waamama. Weerara fageenya irraa jalqabuu ni danda'ama. Ibsa teeknikaa hin jiru. Waan dabalataa ta’een, meeshaa balaa kana fayyadamuuf ni jira. Qorannoo miidhaa (exploit) uummataaf ifa taasifameera, kanaafis fayyadamuu ni danda'ama. Ammas, gatii exploit might be approx. USD $0-$5k yeroo ammaa irratti argamuu danda'a. ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ ta’uu isaa ibsameera. Exploit github.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatiin isaa daldala dhoksaa keessatti $0-$5k akka ta'e tilmaamameera. If you want to get the best quality for vulnerability data then you always have to consider VulDB.

3 ଆଡାପ୍ଟେସନ୍ · 97 ପଏଣ୍ଟ

ଫିଲ୍ଡସୃଷ୍ଟି ହୋଇଛି
04/21/2025 03:53 PM		ଅଦ୍ୟତନ 1/2
04/22/2025 03:19 PM		ଅଦ୍ୟତନ 2/2
10/16/2025 04:34 AM
software_vendorYXJ2018YXJ2018YXJ2018
software_nameSpringBoot-Vue-OnlineExamSpringBoot-Vue-OnlineExamSpringBoot-Vue-OnlineExam
software_version1.01.01.0
software_componentAPIAPIAPI
vulnerability_cweCWE-287 (ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ)CWE-287 (ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ)CWE-287 (ଦୁର୍ବଳ ପ୍ରାମାଣିକରଣ)
vulnerability_risk222
cvss3_vuldb_avNNN
cvss3_vuldb_acHHH
cvss3_vuldb_prNNN
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cNNN
cvss3_vuldb_iLLL
cvss3_vuldb_aNNN
cvss3_vuldb_ePPP
cvss3_vuldb_rcRRR
advisory_identifier73/75/7673/75/7673/75/76
advisory_urlhttps://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/73https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/73https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/73
exploit_availability111
exploit_publicity111
exploit_urlhttps://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/75https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/75https://github.com/YXJ2018/SpringBoot-Vue-OnlineExam/issues/75
source_cveCVE-2025-3850CVE-2025-3850CVE-2025-3850
cna_responsibleVulDBVulDBVulDB
cvss2_vuldb_avNNN
cvss2_vuldb_acHHH
cvss2_vuldb_auNNN
cvss2_vuldb_ciNNN
cvss2_vuldb_iiPPP
cvss2_vuldb_aiNNN
cvss2_vuldb_ePOCPOCPOC
cvss2_vuldb_rcURURUR
cvss4_vuldb_avNNN
cvss4_vuldb_acHHH
cvss4_vuldb_prNNN
cvss4_vuldb_uiNNN
cvss4_vuldb_vcNNN
cvss4_vuldb_viLLL
cvss4_vuldb_vaNNN
cvss4_vuldb_ePPP
cvss2_vuldb_rlNDNDND
cvss3_vuldb_rlXXX
cvss4_vuldb_atNNN
cvss4_vuldb_scNNN
cvss4_vuldb_siNNN
cvss4_vuldb_saNNN
cvss2_vuldb_basescore2.62.62.6
cvss2_vuldb_tempscore2.22.22.2
cvss3_vuldb_basescore3.73.73.7
cvss3_vuldb_tempscore3.43.43.4
cvss3_meta_basescore3.73.73.4
cvss3_meta_tempscore3.43.53.3
cvss4_vuldb_bscore6.36.36.3
cvss4_vuldb_btscore2.92.92.9
advisory_date1745186400 (04/21/2025)1745186400 (04/21/2025)1745186400 (04/21/2025)
price_0day$0-$5k$0-$5k$0-$5k
cvss4_cna_avNN
cvss4_cna_acHH
cvss4_cna_atNN
cvss4_cna_prNN
cvss4_cna_uiNN
cvss4_cna_vcNN
cvss4_cna_viLL
cvss4_cna_vaNN
cvss4_cna_scNN
cvss4_cna_siNN
cvss4_cna_saNN
cvss4_cna_bscore6.36.3
cvss3_cna_avNN
cvss3_cna_acHH
cvss3_cna_prNN
cvss3_cna_uiNN
cvss3_cna_sUU
cvss3_cna_cNN
cvss3_cna_iLL
cvss3_cna_aNN
cvss3_cna_basescore3.73.7
cvss2_cna_avNN
cvss2_cna_acHH
cvss2_cna_auNN
cvss2_cna_ciNN
cvss2_cna_iiPP
cvss2_cna_aiNN
cvss2_cna_basescore2.62.6
cve_nvd_summaryA vulnerability, which was classified as problematic, has been found in YXJ2018 SpringBoot-Vue-OnlineExam 1.0. This issue affects some unknown processing of the component API. The manipulation leads to improper authentication. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.A vulnerability, which was classified as problematic, has been found in YXJ2018 SpringBoot-Vue-OnlineExam 1.0. This issue affects some unknown processing of the component API. The manipulation leads to improper authentication. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used.
cve_nvd_summaryesSe ha encontrado una vulnerabilidad clasificada como problemática en YXJ2018 SpringBoot-Vue-OnlineExam 1.0. Este problema afecta a un procesamiento desconocido de la API del componente. La manipulación provoca una autenticación incorrecta. El ataque puede iniciarse remotamente. Es un ataque de complejidad bastante alta. Parece difícil de explotar. Se ha hecho público el exploit y puede que sea utilizado.Se ha encontrado una vulnerabilidad clasificada como problemática en YXJ2018 SpringBoot-Vue-OnlineExam 1.0. Este problema afecta a un procesamiento desconocido de la API del componente. La manipulación provoca una autenticación incorrecta. El ataque puede iniciarse remotamente. Es un ataque de complejidad bastante alta. Parece difícil de explotar. Se ha hecho público el exploit y puede que sea utilizado.
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prH
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cN
cvss3_nvd_iL
cvss3_nvd_aN
cvss3_nvd_basescore2.7

ପଛକୁସମୀକ୍ଷାଆହୁରି ଦୂରରେ

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!