Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-4210 PoC — Casdoor 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-4210.yaml
Associated Vulnerability
Title:Casdoor 安全漏洞 (CVE-2025-4210)
Description:Casdoor是Casdoor开源的一个支持多种身份验证和授权协议的开源平台。 Casdoor 1.811.0及之前版本存在安全漏洞,该漏洞源于授权绕过,可能导致未经授权的访问。
Description
Casdoor up to 1.811.0 contains an authorization bypass caused by manipulation in HandleScim function in controllers/scim.go, letting remote attackers bypass authorization, exploit requires remote access.
File Snapshot

 id: CVE-2025-4210

info:
  name: Casdoor - Authorization Bypass
  author: theamanrawat
  severity: h

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.