Description
An authentication bypass in Lin-CMS v0.2.1 allows attackers to escalate privileges to Super Administrator.
References (2)
Core 2
Core References
Third Party Advisory
https://gist.github.com/cai-niao98/58c97899695488bd73a73d56adf44c4c
Scores
CVSS v3
6.6
EPSS
0.0102
EPSS Percentile
58.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-287
Status
published
Products (3)
io.github.talelin/lin-cms-core
0Maven
lin-cms_project/lin-cms
0.2.1
pypi/Lin-CMS
0PyPI
Published
Nov 09, 2022
Tracked Since
Feb 18, 2026