CKAN through 2.9.6 account takeovers... CVE-2022-43685

- AV AC AU C I A
发布: 2022-11-22
修订: 2024-11-21

CKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is sent via an HTTP POST request. This allows a user to take over an existing account including superuser accounts.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息