Improper authorization vulnerability exists in the User Management (/admin/users) page of GROWI versions prior to v6.0.6. If this vulnerability is exploited, a user may delete or suspend its own account without the user's intention.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
weseek growi |