Vulnerabilities > Dataease Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-22 | CVE-2022-34112 | Incorrect Permission Assignment for Critical Resource vulnerability in Dataease Project Dataease 1.11.1 An access control issue in the component /api/plugin/uninstall Dataease v1.11.1 allows attackers to arbitrarily uninstall the plugin, a right normally reserved for the administrator. | 6.5 |