Описание
An issue in the delete function in the OaNotifyController class of jeesite v1.2.6 allows authenticated attackers to arbitrarily delete notifications created by Administrators.
Ссылки
- ExploitIssue Tracking
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:jeesite:jeesite:1.2.6:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00056
Низкий
4.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 4.3
github
больше 2 лет назад
An issue in the delete function in the OaNotifyController class of jeesite v1.2.6 allows authenticated attackers to arbitrarily delete notifications created by Administrators.
EPSS
Процентиль: 18%
0.00056
Низкий
4.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo