Home

Description

redragon-erp v1.0 was discovered to contain a Shiro deserialization vulnerability caused by the default Shiro key.

PUBLISHED Reserved 2025-09-26 | Published 2025-10-08 | Updated 2025-10-08 | Assigner mitre

References

github.com/...ocument/blob/main/redragon-erp/redragon-erp.md

gist.github.com/...eYourWay/3b3d3dd5727272c435f1b1f6c17b7181

cve.org (CVE-2025-60830)

nvd.nist.gov (CVE-2025-60830)

Download JSON