An Incorrect Access Control vulnerability exists in zzcms 8.2, which lets a malicious user bypass authentication by changing the user name in the cookie to use any password.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/forget-code/zzcms/issues/2 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-02-14T18:35:48
Updated: 2024-08-04T04:39:20.612Z
Reserved: 2021-12-20T00:00:00
Link: CVE-2021-45347
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-02-14T19:15:07.857
Modified: 2024-11-21T06:32:07.737
Link: CVE-2021-45347
Redhat
No data.