3 matches found
CVE-2017-17693
Techno - Portfolio Management Panel through 2017-11-16 does not check authorization for panel/portfolio.php?action=delete requests that remove feedback...
CVE-2017-17693
Techno - Portfolio Management Panel (through 2017-11-16) has an access control vulnerability in panel/portfolio.php?action=delete that fails to verify authorization, enabling an attacker to remove feedback. Multiple sources (CNVD-2017-38468, NVD entry CVE-2017-17693) corroborate the flaw and its ...
CVE-2017-17693
Techno - Portfolio Management Panel through 2017-11-16 does not check authorization for panel/portfolio.php?action=delete requests that remove feedback...