CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-50904

There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 (2025-06-11). An attacker can exploit this vulnerability to access /admin/ API without any token.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.9%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/WinterChenS/my-site/issues/95

Products affected by CVE-2025-50904

Winterchens » My-Site » Version: Any

cpe:2.3:a:winterchens:my-site:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-50904

Products

Pricing

Contact Us