A vulnerability has been found in Mandelo ssm_shiro_blog 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file updateRoles of the component Backend. The manipulation leads to improper access controls.
This vulnerability is known as CVE-2024-0356. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available.