exploitDog

GHSA-7phh-j5x4-5979

Опубликовано: 19 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.

The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.

Ссылки

EPSS

Процентиль: 40%

0.00185

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-565

Связанные уязвимости

CVE-2024-22186

CVSS3: 8.8

nvd

почти 2 года назад

The application suffers from a privilege escalation vulnerability. An attacker logged in as guest can escalate his privileges by poisoning the cookie to become administrator.

EPSS

Процентиль: 40%

0.00185

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-565