4 matches found
CVE-2022-40036
An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component...
CVE-2022-40036
An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component...
CVE-2022-40036
CVE-2022-40036 affects Rawchen blog-ssm v1.0. The vulnerability is a permission-check bypass in the /adminGetUserList component that can lead to leakage of sensitive user information. Root cause: inadequate authorization checks allow an attacker with network access to obtain user data; no exploit...
CVE-2022-40036
An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component...