hrms hrms 1.0.1 Unauthorized bypass accessinformation

Titre	https://github.com/pbrong/hrms hrms 1.0.1 Unauthorized bypass access
Description	pbrong/hrms There is an unauthorized access to user information vulnerability in HRms-1.0.1 \resource\resource.go file.The vulnerability is due to the flaw in the system's permission verification during database query, which causes the attacker to bypass the permission verification by constructing cookies to obtain user information. Official website: https://github.com/pbrong/hrms/releases/tag/1.0.1 Vulnerability details: https://github.com/A7cc/cve/issues/4
La source	⚠️ https://github.com/A7cc/cve/issues/4
Utilisateur	a7cc (UID 81317)
Soumission	25/02/2025 06:59 (il y a 1 Année)
Modérer	01/03/2025 14:59 (4 days later)
Statut	Accepté
Entrée VulDB	298083 [pbrong hrms jusqu’à 1.0.1 \resource\resource.go HrmsDB user_cookie élévation de privilèges]
Points	20

Might our Artificial Intelligence support you?

Check our Alexa App!