| عنوان | Junnan Wang and his team Dreamer CMS 4.1.3 Common users have administrator rights |
|---|
| الوصف | As an ordinary account, it should not have the permission to delete attachments, forms and variables, and attackers can delete important files of the system through ordinary accounts.Common users have excessive permissions |
|---|
| المصدر | ⚠️ https://github.com/sweatxi/BugHub/blob/main/dreamer_Excessive_authority.pdf |
|---|
| المستخدم | hexixi (UID 59932) |
|---|
| ارسال | 22/03/2024 09:16 PM (2 سنوات منذ) |
|---|
| الاعتدال | 30/03/2024 07:36 AM (7 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 258779 [Dreamer CMS حتى 4.1.3 Attachment تجاوز الصلاحيات] |
|---|
| النقاط | 16 |
|---|