CVE-2025-54378 | haxtheweb haxcms up to 11.0.13 API Endpoint improper authorization (GHSA-9jr9-8ff3-m894)

A vulnerability was found in haxtheweb haxcms up to 11.0.13. It has been rated as critical. Affected by this issue is some unknown functionality of the component API Endpoint. The manipulation leads to improper authorization.

This vulnerability is handled as CVE-2025-54378. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More