Invia #247229: lceCMS v 2.0.1 Horizontal Privilege Escalationinformazioni

TitololceCMS v 2.0.1 Horizontal Privilege Escalation
DescrizioneIceCMS is a content management system based on Spring Boot+Vue front-end and back-end separation. IceCMS v2.0.1 version has a level of unauthorized access, which is located in the area of personal information modification. Through a single ordinary user, multiple user information accounts and passwords can be modified. The backend code only determines identity based on userId, which is why the vulnerability arises
Fonte⚠️ http://x.x.x.x/yue/yue.html
Utente
 zero121 (UID 59411)
Sottomissione04/12/2023 16:08 (3 anni fa)
Moderazione13/12/2023 08:40 (9 days later)
StatoAccettato
Voce VulDB247888 [Thecosy IceCMS fino a 2.0.1 escalationi di privilegi]
Punti19

PrecedenteVisione D'ensembleIl prossimo

Want to know what is going to be exploited?

We predict KEV entries!