ThriveX-Blog <=3.1.7 Incorrect Authorizationالمعلومات

عنوان	LiuYuYang01 https://github.com/LiuYuYang01/ThriveX-Blog <=3.1.7 Incorrect Authorization
الوصف	LiuYuYang01 ThriveX-Blog Project <=3.1.7 Version Incorrect Authorization Vulnerability. Due to the API /web_config/json/name/web not validating current user permissions, this means any user with a valid token can call the updateJsonValueByName method to modify website configuration.
المصدر	⚠️ https://github.com/echo0d/vulnerability/blob/main/LiuYuYang01_ThriveX-Blog/IncorrectAuthorization.md
المستخدم	echo0d (UID 81331)
ارسال	06/08/2025 05:50 PM (9 أشهر منذ)
الاعتدال	19/08/2025 09:53 AM (13 days later)
الحالة	تمت الموافقة
إدخال VulDB	320530 [LiuYuYang01 ThriveX-Blog حتى 3.1.7 web updateJsonValueByName تجاوز الصلاحيات]
النقاط	18

Do you need the next level of professionalism?

Upgrade your account now!