CVE-2025-54461

Publication date

2025-10-16 08:55:03

Family

jpcert

State

PUBLISHED

Description

ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user.