CVE-2024-0356
CVE-2024-0356 affects Mandelo ssm_shiro_blog 1.0, specifically the Backend updateRoles function. Multiple connected sources describe an improper access control vulnerability in that function, with the vulnerability being publicly disclosed and exploitable. The root cause is not spelled out in all...