CVE-2025-5326 | zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 verifyToken deserialization

A vulnerability was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0 and classified as critical. Affected by this issue is some unknown functionality of the file /adpweb/wechat/verifyToken/. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2025-5326. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-5326 | zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 verifyToken deserialization

Post correlati

CVE-2024-1920 | osuuu LightPicture up to 1.2.2 TokenVerify.php handle hard-coded key

CVE-2023-52291 | Apache StreamPark up to 2.1.3 Maven Build Parameter Privilege Escalation

CVE-2024-3767 | PHPGurukul News Portal 4.1 /admin/edit-post.php posttitle sql injection

CVE-2023-4317 | GitLab prior 16.4.3/16.5.3/16.6.1 Pipeline Schedule access control