2 matches found
CVE-2025-8053 Insufficient access control vulnerability has been discovered in Opentext Flipper.
Insufficient Granularity of Access Control vulnerability in opentext Flipper allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow a low privilege user to interact with the backend API without sufficient privileges. This issue affects Flipper: 3.1....
PT-2022-28089 · Ayacms · Ayacms
Name of the Vulnerable Software and Affected Versions: AyaCMS version 3.1.2 Description: The issue allows for file deletion via the /aya/module/admin/fst del.inc.php endpoint. Recommendations: For AyaCMS version 3.1.2, as a temporary workaround, consider restricting access to the...