Devhjz

**Name of the Vulnerable Software and Affected Versions** Casdoor versions prior to 2.26.0 **Description** A flaw exists in the permission verification module and organization/application editing interface. This allows remotely authenticated administrators of any organization to circumvent the system's permission checks by manipulating URLs after logging in. **Recommendations** Update to version 2.26.0 or later.