提出 #303196: Junnan Wang and his team Dreamer CMS 4.1.3 Common users have administrator rights情報

タイトルJunnan Wang and his team Dreamer CMS 4.1.3 Common users have administrator rights
説明As an ordinary account, it should not have the permission to delete attachments, forms and variables, and attackers can delete important files of the system through ordinary accounts.Common users have excessive permissions
ソース⚠️ https://github.com/sweatxi/BugHub/blob/main/dreamer_Excessive_authority.pdf
ユーザー
 hexixi (UID 59932)
送信2024年03月22日 21:16 (2 年 ago)
モデレーション2024年03月30日 07:36 (7 days later)
ステータス承諾済み
VulDBエントリ258779 [Dreamer CMS 迄 4.1.3 Attachment 特権昇格]
ポイント16

Might our Artificial Intelligence support you?

Check our Alexa App!