제출 #461120: ClassCMS V4.8 Improper Handling of Insufficient Permissions or Privileges정보

제목ClassCMS V4.8 Improper Handling of Insufficient Permissions or Privileges
설명A privilege escalation vulnerability exists in the model management module of Classcms. This allows accounts belonging to non-admin user groups to modify admin group users and change their group memberships to other user groups. If all users in the admin group are changed to other groups, the system will no longer have the ability to configure accounts for the admin group.
원천⚠️ https://github.com/Jack-Black-13/blob/blob/main/ClassCMS%20V4.8%20Vertical%20Privilege%20Escalation.md
사용자
 vulbox (UID 78949)
제출2024. 12. 11. PM 03:30 (2 연령 ago)
모더레이션2024. 12. 16. AM 09:53 (5 days later)
상태수락
VulDB 항목288535 [ClassCMS 까지 4.8 User Management Page admin?do=admin:user:editPost 권한 상승]
포인트들18

Do you want to use VulDB in your project?

Use the official API to access entries easily!