CVE-2025-43947

Name of the Vulnerable Software and Affected Versions Codemers KLIMS version 1.6.DEV

Description The issue is related to a lack of proper access control mechanism, allowing a normal user to perform actions that are typically restricted to administrators. This includes modifying the configuration, creating users, uploading files, and other administrative tasks.

Recommendations For Codemers KLIMS version 1.6.DEV, consider restricting access to sensitive features and administrative tasks until a proper access control mechanism is implemented. As a temporary workaround, limit the actions that normal users can perform to minimize the risk of unauthorized modifications or data uploads.