CVE-2025-13063

Summary

A flaw has been found in DinukaNavaratna Dee Store 1.0. Affected is an unknown function. Executing manipulation can lead to missing authorization. The attack may be performed from remote. The exploit has been published and may be used. Multiple endpoints are affected.

Affected Software

VendorProductVersion RangeStatus
DinukaNavaratnaDee Store1.0affected

Weaknesses

  • CWE-862: Missing Authorization
  • CWE-863: Incorrect Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References