ГлавнаяУязвимости → CVE-2025-25948
9.1критическая

CVE-2025-25948

Описание

Incorrect access control in the component /rest/staffResource/create of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows create and modify user accounts, including an Administrator account.

Затрагиваемое ПО
Academiaerp Student information system
CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2024-53637https://github.com/VvV1per/Vulnerability-Research-CVEs/tree/main/CVE-2025-25948https://github.com/el-viper/cve-research/tree/main/CVEs/CVE-2025-25948