| Titre | Shenzhen Sixun Software Co., Ltd. Sissyun Shanghui 7 Online Business System 4.10.24.3 Unauthorized |
|---|
| Description | Sissyun Shanghui 7 Online Business System has a user password reset vulnerability, allowing attackers to enumerate usernames and modify the password of any user.
https://github.com/zhangbuneng/Sissyun-Shanghui-7-Unauthorized-password-modificationfication-vulnerability./issues/1#issue-3688839620 |
|---|
| La source | ⚠️ https://github.com/zhangbuneng/Sissyun-Shanghui-7-Unauthorized-password-modificationfication-vulnerability./issues/1#issue-3688839620 |
|---|
| Utilisateur | yaozhangYiqiyin (UID 81367) |
|---|
| Soumission | 03/12/2025 08:22 (il y a 5 mois) |
|---|
| Modérer | 14/12/2025 13:22 (11 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 336414 [Shenzhen Sixun Software Sixun Shanghui Group Business Management System 4.10.24.3 UpdatePasswordBatch élévation de privilèges] |
|---|
| Points | 17 |
|---|