Vulnerabilities > CVE-2023-27088 - Unspecified vulnerability in Feiqu-Opensource Project Feiqu-Opensource

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
feiqu-opensource-project

Summary

feiqu-opensource Background Vertical authorization vulnerability exists in IndexController.java. demo users with low permission can perform operations within the permission of the admin super administrator and can use this vulnerability to change the blacklist IP address in the system at will.

Vulnerable Configurations

Part Description Count
Application
Feiqu-Opensource_Project
1