Lucene search
Veracode Vulnerability DatabaseVERACODE:33803HistoryJan 21, 2022 - 7:57 a.m.
Access Control Bypass
2022-01-2107:57:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
26.1%
microweber/microweber is vulnerable to access control bypass. The vulnerability that exists in user permissions in api_user.php file does not perform sufficient user permissions, allowing unauthorized users to access sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microweber/microweber | le | v1.2.10 | |
| microweber/microweber | le | v1.2.10 |
Related
cnvd
cnvd
microweber access control error vulnerability
2022-01-23 00:00:00
osv
osv
CVE-2022-0277
2022-01-20 10:15:09
nvd
nvd
CVE-2022-0277
2022-01-20 10:15:09
github
github
cve
cve
CVE-2022-0277
2022-01-20 10:15:09
huntr
huntr
Improper Access Control in microweber/microweber
2022-01-02 15:54:30
prion
prion
Design/Logic Flaw
2022-01-20 10:15:00
cvelist
cvelist