CVE-2022-27958

Insecure permissions configured in the userid parameter at /user/getuserprofile of FEBS-Security v1.0 allows attackers to access and arbitrarily modify users' personal information.

Link	Resource
https://github.com/afeng2016-s/CVE-Request/blob/main/febs-security/febs.md	Exploit Third Party Advisory

Configuration 1

cpe:2.3:a:febs-security_project:febs-security:1.0:*:*:*:*:*:*:*

---

Published : 2022-04-10 09:15

Updated : 2022-04-15 03:15

---

NVD link : CVE-2022-27958

Mitre link : CVE-2022-27958

No products.

CWE-276

Incorrect Default Permissions