1 results (0.003 seconds)
CVSS: 3.1EPSS: 0%CPEs: 1EXPL: 1
CVSS: 3.1EPSS: 0%CPEs: 1EXPL: 1CVE-2025-4819 – y_project RuoYi Offline Logout batchForceLogout improper authorization
https://notcve.org/view.php?id=CVE-2025-4819
17 May 2025 — A vulnerability classified as problematic has been found in y_project RuoYi 4.8.0. Affected is an unknown function of the file /monitor/online/batchForceLogout of the component Offline Logout. The manipulation of the argument ids leads to improper authorization. It is possible to launch the attack remotely. The complexity of an attack is rather high. • https://github.com/chujianxin0101/vuln/issues/4 • CWE-266: Incorrect Privilege Assignment CWE-285: Improper Authorization •