hrms hrms 1.0.1 Unauthorized bypass accessthông tin

tiêu đề	https://github.com/pbrong/hrms hrms 1.0.1 Unauthorized bypass access
Mô tả	pbrong/hrms There is an unauthorized access to user information vulnerability in HRms-1.0.1 \resource\resource.go file.The vulnerability is due to the flaw in the system's permission verification during database query, which causes the attacker to bypass the permission verification by constructing cookies to obtain user information. Official website: https://github.com/pbrong/hrms/releases/tag/1.0.1 Vulnerability details: https://github.com/A7cc/cve/issues/4
Nguồn	⚠️ https://github.com/A7cc/cve/issues/4
Người dùng	a7cc (UID 81317)
Đệ trình	25/02/2025 06:59 (cách đây 1 Năm)
Kiểm duyệt	01/03/2025 14:59 (4 days later)
Trạng thái	được chấp nhận
Mục VulDB	298083 [pbrong hrms đến 1.0.1 \resource\resource.go HrmsDB user_cookie nâng cao đặc quyền]
điểm	20

Do you want to use VulDB in your project?

Use the official API to access entries easily!