CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-55797

An improper access control vulnerability in FormCms v0.5.4 in the /api/schemas/history/[schemaId] endpoint allows unauthenticated attackers to access historical schema data if a valid schemaId is known or guessed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.4%

CVSS Severity

CVSS v3 Score 6.5

References

https://github.com/FormCms
https://github.com/FormCms/FormCms
https://github.com/KKC73/me/tree/main/CVE-2025-55797

Products affected by CVE-2025-55797

Formcms » Formcms » Version: 0.5.4

cpe:2.3:a:formcms:formcms:0.5.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-55797

Products

Pricing

Contact Us