CVE-2025-4962 | lunary-ai lunary up to 1.9.22 API /v1/templates projectId access control

A vulnerability was found in lunary-ai lunary up to 1.9.22 and classified as critical. This impacts an unknown function of the file /v1/templates of the component API. Such manipulation of the argument projectId leads to improper access controls.

This vulnerability is referenced as CVE-2025-4962. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More