4 matches found
CVE-2022-1753
A vulnerability, which was classified as critical, was found in WoWonder. Affected is the file /requests.php which is responsible to handle group messages. The manipulation of the argument groupid allows posting messages in other groups. It is possible to launch the attack remotely but it might...
CVE-2022-1753
A vulnerability, which was classified as critical, was found in WoWonder. Affected is the file /requests.php which is responsible to handle group messages. The manipulation of the argument groupid allows posting messages in other groups. It is possible to launch the attack remotely but it might...
CVE-2022-1753 WoWonder Group requests.php access control
A vulnerability, which was classified as critical, was found in WoWonder. Affected is the file /requests.php which is responsible to handle group messages. The manipulation of the argument groupid allows posting messages in other groups. It is possible to launch the attack remotely but it might...
CVE-2022-1753
Summary: CVE-2022-1753 affects WoWonder via /requests.php, where manipulating the group_id parameter enables posting messages in other groups. The vulnerability can be triggered remotely, with some sources noting authentication may be required. This indicates a broken access control condition in ...