CVE-2025-50904

Published August 20th, 2025

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 (2025-06-11). An attacker can exploit this vulnerability to access /admin/ API without any token.

WinterChenS/my-site

springboot2.0开发的个人网站，集成了：个人首页，个人博客，个人作品

GitHub

3.48K