CVE-2022-27958
Summary: CVE-2022-27958 affects FEBS-Security v1.0. The issue is insecure permissions configured in the userid parameter at /user/getuserprofile, enabling an attacker to access and arbitrarily modify users’ personal information. Details from connected sources: The Red Hat CVE reference corroborat...