Medium severity6.4NVD Advisory· Published Apr 21, 2025· Updated Jun 17, 2026
CVE-2025-28103
CVE-2025-28103
Description
Incorrect access control in laskBlog v2.6.1 allows attackers to arbitrarily delete user accounts via a crafted request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- laskBlog/laskBlogdescription
- Range: <2.6.1
Patches
Vulnerability mechanics
References
2- gist.github.com/coleak2021/77895b7a7b335ae17eb57390f4a94917nvdThird Party Advisory
- github.com/DogukanUrker/flaskBlog/issues/130nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.