CVE-2025-52101

Published: Jul 1, 2025

Modified: Jul 2, 2025

PUBLISHED

Description

linjiashop <=0.9 is vulnerable to Incorrect Access Control. When using the default-generated JWT authentication, attackers can bypass the authentication and retrieve the encrypted "password" and "salt". The password can then be obtained through brute-force cracking.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gitee.com/microapp/linjiashop

https://gist.github.com/NSW111/33824ceb4d1b920671124f77abfe27e8

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-52101

Description

Affected Products

References