Vulnerabilities > Blog SSM Project > Blog SSM > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2022-40036 Unspecified vulnerability in Blog-Ssm Project Blog-Ssm 1.0
An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component.
network
low complexity
blog-ssm-project
6.5
6.5