Описание
Incorrect access control in the component /rest/staffResource/findAllUsersAcrossOrg of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows create and modify user accounts, including an Administrator account.
Ссылки
- Broken LinkNot Applicable
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:serosoft:academia_student_information_system:eagler-1.0.118:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.0011
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 9.1
github
11 месяцев назад
Incorrect access control in the component /rest/staffResource/findAllUsersAcrossOrg of Serosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 allows create and modify user accounts, including an Administrator account.
EPSS
Процентиль: 30%
0.0011
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-862