5 matches found
CVE-2020-19005
zrlog v2.1.0 has a vulnerability with the permission check. If admin account is logged in, other unauthorized users can download the database backup file directly...
CVE-2020-19005
zrlog v2.1.0 has a vulnerability with the permission check. If admin account is logged in, other unauthorized users can download the database backup file directly...
Design/Logic Flaw
zrlog v2.1.0 has a vulnerability with the permission check. If admin account is logged in, other unauthorized users can download the database backup file directly...
CVE-2020-19005
Summary: The issue CVE-2020-19005 affects zrlog v2.1.0 and stems from a faulty permission check that allows an admin session to enable other, unauthorized users to directly download the database backup file. Affected software: zrlog 2.1.0 (Java-based blog/CMS). Vulnerability details: Permission v...
CVE-2020-19005
zrlog v2.1.0 has a vulnerability with the permission check. If admin account is logged in, other unauthorized users can download the database backup file directly...