Bhima version 1.27.0 allows a remote... CVE-2023-0959

- AV AC AU C I A
发布: 2023-04-05
修订: 2023-04-17

Bhima version 1.27.0 allows a remote attacker to update the privileges of any account registered in the application via a malicious link sent to an administrator. This is possible because the application is vulnerable to CSRF.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息