Nekocc

**Name of the Vulnerable Software and Affected Versions** NiterForum version 2.5.0-beta **Description** An issue was discovered in the `/src/main/java/cn/niter/forum/api/SsoApi.java` and `/src/main/java/cn/niter/forum/controller/AdminController.java` files, allowing attackers to gain escalated privileges. **Recommendations** For NiterForum version 2.5.0-beta, consider disabling the `SsoApi` and `AdminController` functions until a patch is available. Restrict access to these components to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.