CVE-2023-27088

feiqu-opensource Background Vertical authorization vulnerability exists in IndexController.java. demo users with low permission can perform operations within the permission of the admin super administrator and can use this vulnerability to change the blacklist IP address in the system at will...

Authorization

feiqu-opensource Background Vertical authorization vulnerability exists in IndexController.java. demo users with low permission can perform operations within the permission of the admin super administrator and can use this vulnerability to change the blacklist IP address in the system at will...

feiqu 安全漏洞

feiqu Feiqu Community is a web application by the individual developer Chen Weidong chen87548081. A security vulnerability exists in feiqu feiqu-opensource, which stems from a vertical authorization vulnerability that can be exploited by an attacker to arbitrarily change the blacklisted IP...

CVE-2023-27088

CVE-2023-27088 affects feiqu-opensource with a background vertical authorization issue in IndexController.java. Exploitable by demo users with low permission to perform admin-level operations, including changing the blacklist IP address. CVSS v3.1 metrics show a high-severity, network-based explo...

CVE-2023-27088

feiqu-opensource Background Vertical authorization vulnerability exists in IndexController.java. demo users with low permission can perform operations within the permission of the admin super administrator and can use this vulnerability to change the blacklist IP address in the system at will...

Security Bulletin: Vertical authorization bypass vulnerability (CVE-2018-1613) affects IBM Platform Symphony, IBM Spectrum Symphony

Summary The vertical authorization bypass vulnerability affects the Symping utility in IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1, and IBM Spectrum Symphony 7.1.2 and 7.2.0.2. Vulnerability Details CVEID: CVE-2018-1613 DESCRIPTION: IBM Platform Symphony and IBM Spectrum Symphony could allow a...