CVE-2024-12483 | Dromara UJCMS up to 9.6.3 User ID /users/id authorization

Inserito da Angelo Barbosa | Dic 11, 2024 | CVE

A vulnerability classified as problematic has been found in Dromara UJCMS up to 9.6.3. This affects an unknown part of the file /users/id of the component User ID Handler. The manipulation leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2024-12483. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-12483 | Dromara UJCMS up to 9.6.3 User ID /users/id authorization

Post correlati

CVE-2024-32544 | Netgsm Plugin up to 2.8 on WordPress cross site scripting

CVE-2023-46750 | Apache Shiro up to 1.12.x/2.0.0-alpha-3 Form Authentication redirect

CVE-2023-50977 | GNOME Shell up to 45.2 DNS Request unknown vulnerability

CVE-2023-3907 | GitLab Enterprise Edition prior 16.4.4/16.5.4/16.6.2 Project Access Token privileges management (Issue 418878)