Описание
A security vulnerability has been detected in fuyang_lipengjun platform 1.0. This issue affects the function UserCouponController of the file /usercoupon/queryAll. The manipulation leads to improper authorization. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.
Ссылки
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fuyang_lipengjun:platform:1.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-266
Связанные уязвимости
CVSS3: 4.3
github
5 месяцев назад
A security vulnerability has been detected in fuyang_lipengjun platform 1.0. This issue affects the function UserCouponController of the file /usercoupon/queryAll. The manipulation leads to improper authorization. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.
EPSS
Процентиль: 13%
0.00042
Низкий
4.3 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-266