CVE-2025-11406

Name of the Vulnerable Software and Affected Versions kaifangqian kaifangqian-base (affected versions not specified)

Description A security flaw exists in kaifangqian kaifangqian-base. The issue involves information disclosure resulting from manipulation of the getAllUsers function located in the file kaifangqian-parent/kaifangqian-system/src/main/java/com/kaifangqian/modules/system/controller/SysUserController.java. The attack can be launched remotely and the exploit has been publicly released.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.