CVE-2025-3255

Name of the Vulnerable Software and Affected Versions xujiangfei admintwo version 1.0

Description A vulnerability was found in an unknown functionality of the file /user/home, where the manipulation of the ID argument leads to improper access controls. The attack can be launched remotely.

Recommendations For xujiangfei admintwo version 1.0, as a temporary workaround, consider restricting access to the /user/home file until a patch is available. Avoid using the ID argument in affected functionalities to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.