CVE-2021-41976

Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in.
References
Link Resource
https://www.twcert.org.tw/tw/cp-132-5175-a2f8d-1.html Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:tad_uploader_project:tad_uploader:*:*:*:*:*:*:*:*

Information

Published : 2021-10-08 04:15

Updated : 2022-08-12 04:30


NVD link : CVE-2021-41976

Mitre link : CVE-2021-41976

Products Affected
No products.
CWE