up.time 7.5.0 Superadmin Privilege...

- AV AC AU C I A
发布: 2015-08-22
修订: 2025-04-13

up.time suffers from a privilege escalation issue. A normal user can elevate his/her privileges by sending a POST request setting the parameter 'userroleid' to 1. Cross site request forgery can be used to exploit this attack.

0%

漏洞利用/PoC

当前有1条漏洞利用/PoC

受影响的平台与产品

当前有0条受影响产品信息