CVE-2025-13063
BaseFortify
Publication date: 2025-11-12
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dinukanavaratna | dee_store | 1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
| CWE-863 | The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a flaw in DinukaNavaratna Dee Store 1.0 affecting an unknown function. It allows an attacker to perform manipulations that lead to missing authorization, meaning unauthorized users may gain access or perform actions they should not be allowed to. The attack can be executed remotely and affects multiple endpoints. The exploit has been published and may be used by attackers.
How can this vulnerability impact me? :
The vulnerability can impact you by allowing unauthorized remote attackers to bypass authorization controls in DinukaNavaratna Dee Store 1.0. This could lead to unauthorized access to sensitive data or functionality, potentially resulting in data breaches, data manipulation, or other security incidents.