6 matches found
CVE-2023-50332
Improper authorization vulnerability exists in the User Management /admin/users page of GROWI versions prior to v6.0.6. If this vulnerability is exploited, a user may delete or suspend its own account without the user's intention...
CVE-2023-50332
creationtimestamp| type| source ---|---|--- 2023-12-26 09:27:03+00:00| seen| https://t.me/ctinow/159292 2023-12-28 02:54:22+00:00| seen| https://t.me/arpsyndicate/2181...
CVE-2023-50332
Improper authorization vulnerability exists in the User Management /admin/users page of GROWI versions prior to v6.0.6. If this vulnerability is exploited, a user may delete or suspend its own account without the user's intention...
CVE-2023-50332
Improper authorization vulnerability exists in the User Management /admin/users page of GROWI versions prior to v6.0.6. If this vulnerability is exploited, a user may delete or suspend its own account without the user's intention...
CVE-2023-50332
GROWI contains an improper authorization vulnerability (CVE-2023-50332) on the User Management page (/admin/users) that could allow a user to delete or suspend their own account in versions prior to 6.0.6. Root cause is an authorization flaw in the /admin/users endpoint. The issue is documented a...
CVE-2023-50332
Improper authorization vulnerability exists in the User Management /admin/users page of GROWI versions prior to v6.0.6. If this vulnerability is exploited, a user may delete or suspend its own account without the user's intention...