An access control issue in the component /api/plugin/uninstall Dataease v1.11.1 allows malicious users to arbitrarily uninstall the plugin, a right normally reserved for the administrator.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dataease project dataease 1.11.1 |