Access Control Vulnerability in LCweb Global Gallery Affects Multiple Versions
CVE-2025-52721
6.5MEDIUM
What is CVE-2025-52721?
A missing authorization vulnerability in LCweb Global Gallery allows attackers to exploit incorrectly configured access control security levels. This issue may permit unauthorized users to gain access to sensitive functionalities, potentially leading to unauthorized modifications or data exposure across versions from n/a to 9.2.3.
Affected Version(s)
Global Gallery <= 9.2.3