logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2022-46890

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-46890

Description:
Weak access control in NexusPHP before 1.7.33 allows a remote authenticated user to edit any post in the forum (this is caused by a lack of checks performed by the /forums.php?action=post page).
Last updated date:
01/25/2023
Type:
exploit
Confidence:
HIGH
Date of publishing:
01/25/2023
Reference url to background

https://www.surecloud.com/resources/blog/nexusphp-surecloud-security-review-identifies-authenticated-unauthenticated-vulnerabilities

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy