Gửi #461120: ClassCMS V4.8 Improper Handling of Insufficient Permissions or Privilegesthông tin

tiêu đềClassCMS V4.8 Improper Handling of Insufficient Permissions or Privileges
Mô tảA privilege escalation vulnerability exists in the model management module of Classcms. This allows accounts belonging to non-admin user groups to modify admin group users and change their group memberships to other user groups. If all users in the admin group are changed to other groups, the system will no longer have the ability to configure accounts for the admin group.
Nguồn⚠️ https://github.com/Jack-Black-13/blob/blob/main/ClassCMS%20V4.8%20Vertical%20Privilege%20Escalation.md
Người dùng
 vulbox (UID 78949)
Đệ trình11/12/2024 15:30 (cách đây 2 những năm)
Kiểm duyệt16/12/2024 09:53 (5 days later)
Trạng tháiđược chấp nhận
Mục VulDB288535 [ClassCMS đến 4.8 User Management Page admin?do=admin:user:editPost nâng cao đặc quyền]
điểm18

Might our Artificial Intelligence support you?

Check our Alexa App!