NextGuard
UNKNOWNCVE-2026-5529

Dromara lamp-cloud DefUserController pageUser improper authorization

Platform

php

Component

lamp-cloud

View on NVD

A vulnerability was detected in Dromara lamp-cloud up to 5.8.1. This vulnerability affects the function pageUser of the file /defUser/pageUser of the component DefUserController. Performing a manipulation results in improper authorization. The attack can be initiated remotely. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

How to fix

Actualice lamp-cloud a una versión corregida.  El proyecto Dromara ha sido notificado del problema, pero aún no ha respondido.  Consulte las fuentes de referencia para obtener más información y posibles soluciones alternativas.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free
CVE-2026-5529 — Vulnerability Details | NextGuard | NextGuard