CVE-2018-1000133
Pitchfork v1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that lets a logged-in, unprivileged user elevate to System Administrator within the web portal. Root cause: incorrect permission handling that permits self-assigning System Administrator r...