Labcup
Monthly
In LabCup before <v2_next_18022, it is possible to use the save API to perform unauthorized actions for users without access to user management in order to, after successful exploitation, gain access. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable. No vendor patch available.
In LabCup before <v2_next_18022, it is possible to use the save API to perform unauthorized actions for users without access to user management in order to, after successful exploitation, gain access. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable. No vendor patch available.