Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published May 5, 2025· Updated May 6, 2025

CVE-2025-45612

CVE-2025-45612

Description

Incorrect access control in xmall v1.1 allows attackers to bypass authentication via a crafted GET request to /index.

Affected products

2

xmall/xmalldescription
xmall/xmallllm-fuzzy
Range: <=1.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

github.com/Exrick/xmall/issues/96mitre

News mentions

0

No linked articles in our index yet.