Количество 4
Количество 4
CVE-2012-0215
model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authenticated users to modify the privileges of arbitrary users via a (1) create, (2) write, (3) delete, or (4) copy rpc call.
CVE-2012-0215
model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authenticated users to modify the privileges of arbitrary users via a (1) create, (2) write, (3) delete, or (4) copy rpc call.
CVE-2012-0215
model/modelstorage.py in the Tryton application framework (trytond) be ...
GHSA-cqg4-rf29-3mv6
Trytond allows modification of privileges of arbitrary users
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2012-0215 model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authenticated users to modify the privileges of arbitrary users via a (1) create, (2) write, (3) delete, or (4) copy rpc call. | CVSS2: 5.5 | 1% Низкий | больше 13 лет назад |
 | CVE-2012-0215 model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authenticated users to modify the privileges of arbitrary users via a (1) create, (2) write, (3) delete, or (4) copy rpc call. | CVSS2: 5.5 | 1% Низкий | больше 13 лет назад |
| CVE-2012-0215 model/modelstorage.py in the Tryton application framework (trytond) be ... | CVSS2: 5.5 | 1% Низкий | больше 13 лет назад |
| GHSA-cqg4-rf29-3mv6 Trytond allows modification of privileges of arbitrary users | CVSS3: 6.5 | 1% Низкий | почти 4 года назад |
Уязвимостей на страницу