CVE-2023-43901
- Reference to the description:
- Description:
- Incorrect access control in the AdHoc User creation form of EMSigner v2.8.7 allows unauthenticated attackers to arbitrarily modify usernames and privileges by using the email address of a registered user.
- Last updated date:
- 11/17/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 11/17/2023
- Reference url to background