PT-2019-14506 · Vmware · Harbor

Name of the Vulnerable Software and Affected Versions: Harbor versions 1.7.0 through 1.8.2 Description: The issue allows non-admin users to create admin accounts via the "POST /api/users" API endpoint, when Harbor is set up with a DB as the authentication backend and allows users to do...