Submeter #616924: Vaelsys Vaelsys V4 v4.1.0 Unauthorized User Creation Vulnerabilityinformação

TítuloVaelsys Vaelsys V4 v4.1.0 Unauthorized User Creation Vulnerability
DescriçãoThe Vaelsys V4 Platform suffers from a severe arbitrary user creation vulnerability. Attackers can exploit this flaw to create unauthorized user accounts, including those with administrative privileges, by submitting crafted POST requests to the grid/vgrid_server.php endpoint, bypassing all authentication and authorization controls.
Fonte⚠️ https://github.com/waiwai24/0101/blob/main/CVEs/Vaelsys/Unauthorized_User_Creation_Vulnerability_Exists_in_Vaelsys_V4_Platform.md
Utilizador
 waiwai24 (UID 81637)
Submissão16/07/2025 11h06 (há 9 meses)
Moderação26/07/2025 18h14 (10 days later)
EstadoAceite
Entrada VulDB317849 [Vaelsys VaelsysV4 4.1.0 User Creation /grid/vgrid_server.php Elevação de Privilégios]
Pontos19

VoltarVisão GeralPróximo