Vulnerabilities > Toni Mueller

DATE	CVE	VULNERABILITY TITLE	RISK
2009-08-11	CVE-2009-2737	Permissions, Privileges, and Access Controls vulnerability in Toni Mueller Roundup The EditCSVAction function in cgi/actions.py in Roundup 1.2 before 1.2.1, 1.4 through 1.4.6, and possibly other versions does not properly check permissions, which allows remote authenticated users with edit or create privileges for a class to modify arbitrary items within that class, as demonstrated by editing all queries, modifying settings, and adding roles to users. network low complexity toni-mueller CWE-264	5.5

Vulnerabilities > Toni Mueller {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Toni Mueller"}]}