3 matches found
CVE-2017-17708
Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3...
CVE-2017-17708
Because of insufficient authorization checks it is possible for any authenticated user to change profile data of other users in Pleasant Password Server before 7.8.3...
CVE-2017-17708
Affected software: Pleasant Password Server (before version 7.8.3).Root cause: Insufficient authorization checks allowing a logged-in user to modify other users’ profile data.Impact: Any authenticated user can change profile data of other users; no confidentiality impact, but integrity of user pr...