| Titel | xxyopen novel V3.5.0 Improper Access Controls |
|---|
| Beschreibung | It is possible to perform horizontal privilege escalation to delete or modify any novel chapter of any other author. |
|---|
| Quelle | ⚠️ https://github.com/Sinon2003/cve/blob/main/novel/Novel%20%20has%20a%20logic%20authorization%20bypass%20vulnerability%20in%20AuthorController.md |
|---|
| Benutzer | Rorochan (UID 79656) |
|---|
| Einreichung | 15.04.2025 15:38 (vor 1 Jahr) |
|---|
| Moderieren | 28.04.2025 08:48 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 306401 [201206030 Novel 3.5.0 Chapter AuthorController.java updateBookChapter erweiterte Rechte] |
|---|
| Punkte | 14 |
|---|