Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ClassCMS User Management Page admin insufficient privileges
Vulnerability Description
A vulnerability has been found in ClassCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin?do=admin:user:editPost of the component User Management Page. The manipulation leads to improper handling of insufficient privileges. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
不充分特权处理不恰当
Vulnerability Title
ClassCMS 安全漏洞
Vulnerability Description
ClassCMS是中国ClassCMS开源的一款简单、灵活、安全、易于拓展的内容管理系统。 ClassCMS 4.8版本及之前版本存在安全漏洞,该漏洞源于权限不足时处理不当。
CVSS Information
N/A
Vulnerability Type
N/A