Enviar #506544: https://github.com/pbrong/hrms hrms 1.0.1 Unauthorized bypass accessinformación

Títulohttps://github.com/pbrong/hrms hrms 1.0.1 Unauthorized bypass access
Descripciónpbrong/hrms There is an unauthorized access to user information vulnerability in HRms-1.0.1 \resource\resource.go file.The vulnerability is due to the flaw in the system's permission verification during database query, which causes the attacker to bypass the permission verification by constructing cookies to obtain user information. Official website: https://github.com/pbrong/hrms/releases/tag/1.0.1 Vulnerability details: https://github.com/A7cc/cve/issues/4
Fuente⚠️ https://github.com/A7cc/cve/issues/4
Usuario
 a7cc (UID 81317)
Sumisión2025-02-25 06:59 (hace 1 Año)
Moderación2025-03-01 14:59 (4 days later)
EstadoAceptado
Entrada de VulDB298083 [pbrong hrms hasta 1.0.1 \resource\resource.go HrmsDB user_cookie escalada de privilegios]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!