Unrated severityNVD Advisory· Published Feb 21, 2025· Updated Mar 3, 2025
CVE-2025-25767
CVE-2025-25767
Description
A vertical privilege escalation vulnerability in the component /controller/UserController.java of MRCMS v3.1.2 allows attackers to arbitrarily delete users via a crafted request.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.