CVE-2025-28104

Publication date

2025-04-21 00:00:00

Family

mitre

State

PUBLISHED

Description

Incorrect access control in laskBlog v2.6.1 allows attackers to access all usernames via a crafted input.