Vulnerability CVE-2023-27095


Published: 2023-03-16

Description:
Insecure Permissions vulnerability found in OpenGoofy Hippo4j v.1.4.3 allows attacker toescalate privileges via the AddUser method of the UserController function in Tenant Management module.

 References:
https://github.com/opengoofy/hippo4j/issues/1061

Copyright 2023, cxsecurity.com

 

Back to Top