Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can result in A standard unprivileged user could gain system administrator permissions within the web portal.. This attack appear to be exploitable via The user must be able to login, and could edit their profile and set the "System Administrator" permission to "yes" on themselves.. This vulnerability appears to have been fixed in 1.4.6 RC2.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pitchfork Trident Pitchfork组件安全漏洞
Vulnerability Description
Pitchfork是一款安全通信平台框架。Trident Pitchfork components是其中的组件。 Pitchfork 1.4.6 RC1版本中的Trident Pitchfork组件存在存在安全漏洞。攻击者可通过登录并更改配置文件利用该漏洞获取系统管理员权限。
CVSS Information
N/A
Vulnerability Type
N/A