| عنوان | FoxCMS <=1.2.0 Auth bypass |
|---|
| الوصف | FoxCMS versions ≤1.2 contain an authentication bypass vulnerability in the `/app/api/controller/Site.php` file. An attacker can exploit this vulnerability by sending a specially crafted request to the API endpoint, which allows anonymous users to reset the admin's password. |
|---|
| المصدر | ⚠️ https://note.zhaoj.in/share/8l4RPA2zcxRr |
|---|
| المستخدم | glzjin (UID 59815) |
|---|
| ارسال | 22/12/2024 03:33 PM (1 سنة منذ) |
|---|
| الاعتدال | 22/12/2024 05:47 PM (2 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 289171 [FoxCMS حتى 1.2 API Endpoint Site.php كلمة المرور تجاوز الصلاحيات] |
|---|
| النقاط | 17 |
|---|