Return to CVE list

CVE-2025-28400

6.7

Medium

CVE-2025-28400

7 Apr 2025

cve@mitre.org

Analyzed

View on MITRE Find on GitHub

Description

An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the postID parameter in the edit method

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

cve@mitre.org

https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28400.md

cve@mitre.org

https://github.com/yangzongzhuan/RuoYi