Vulmon
CVE-2022-21660
Gin-Vue-admin垂直越权漏洞与代码分析-CVE-2022-21660 一、前言 欢迎各位大佬们给该项目点一个start githubcom/flipped-aurora/gin-vue-admin/ 文章写完了之后,申请CVE有一些麻烦,不过好在还是申请到了,github的员工响应迅速 ps 申请CVE前,已经提交了CNVD 二、环境搭
Gin-vue-admin is a backstage management system based on vue and gin. In versions before 2.4.7 low privilege users are able to modify higher privilege users. Authentication is missing on the `setUserInfo` function. Users are advised to update as soon as possible. There are no known workarounds.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
gin-vue-admin project gin-vue-admin |