thinkcmf v5.1.7 has an unauthorized vulnerability. The attacker can modify the password of the administrator account with id 1 through the background user management group permissions. The use condition is that the background user management group authority is required.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
thinkcmf thinkcmf 5.1.7 |