Lucene search
GoogleOSV:CVE-2017-11681HistoryJul 27, 2017 - 6:29 a.m.
CVE-2017-11681
2017-07-2706:29:00
Google
osv.dev
2
Incorrect Access Control vulnerability in Hashtopussy 0.4.0 allows remote authenticated users to execute actions that should only be available for administrative roles, as demonstrated by an action=createVoucher request to agents.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hashtopussy | eq | 0.2.0-rc1 | |
| hashtopussy | eq | 0.3.1 | |
| hashtopussy | eq | 0.2.0 | |
| hashtopussy | eq | 0.3.0 | |
| hashtopussy | eq | 0.2.0-beta | |
| hashtopussy | eq | 0.3.2 | |
| hashtopussy | eq | 0.4.0 |
References
Related
nvd
nvd
CVE-2017-11681
2017-07-27 06:29:00
cvelist
cvelist
CVE-2017-11681
2017-07-27 06:00:00
prion
prion
Improper access control
2017-07-27 06:29:00
cve
cve
CVE-2017-11681
2017-07-27 06:29:00