CVE-2020-13963

CVE-2020-13963

SOPlanning before 1.47 has Incorrect Access Control because certain secret key information, and the related authentication algorithm, is public. The key for admin is hardcoded in the installation code, and there is no key for publicsp (which is a guest account).

Source: CVE-2020-13963

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다