Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ifme - Improper Access Control leads to admin deactivation
Vulnerability Description
In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper access control, which makes it possible for admins to ban themselves leading to their deactivation from Ifme account and complete loss of admin access to Ifme.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
访问控制不恰当
Vulnerability Title
Ifme 安全漏洞
Vulnerability Description
Ifme是开源的一个心理健康体验社区,鼓励人们与可信赖的盟友分享他们的个人故事。 ifme 存在安全漏洞,该漏洞源于在 Ifme 中,v5.0.0 到 v7.32 版本容易受到不当访问控制的影响,这使得管理员可以禁止自己,导致他们从 Ifme 帐户中停用并完全失去对 Ifme 的管理员访问权限。
CVSS Information
N/A
Vulnerability Type
N/A