Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

thinkcmf v5.17 unauthorized vulnerability #722

Closed
Swagtimeao opened this issue Sep 1, 2021 · 0 comments
Closed

thinkcmf v5.17 unauthorized vulnerability #722

Swagtimeao opened this issue Sep 1, 2021 · 0 comments
Assignees
Labels

Comments

@Swagtimeao
Copy link

thinkcmf v5.17 found an unauthorized vulnerability. The attacker can modify the password of the administrator account with id 1 through the background user management group permissions. The use condition is that the background user management group authority is required. By default, the password of the administrator account with id 1 cannot be modified.

Vulnerable Files:/public/plugins/portal/controller/AdminRbacController.php

clipboard

Browser access /admin/user/edit/id/1.html,Modify the password of the administrator account with id 1.
clipboard2

thinkcmf pushed a commit that referenced this issue Jul 24, 2022
@yangguangwuwu yangguangwuwu self-assigned this Jul 30, 2022
thinkcmf pushed a commit that referenced this issue Oct 28, 2022
* fix github (#736)
* fix github (#737)
* 升级第三方包
* 优化后台验证码逻辑
* !34 update vendor/thinkcmf/cmf-app/src/admin/model/SlideItemModel.php.
* fix #I5MRC5
* phpquery
* Merge branch '6.0' of https://gitee.com/thinkcmf/ThinkCMF into 6.0
* 新增加`cmf_together`函数
* 本站用户页面操作启用,优化提示
* 管理员 添加 时间优化
* 修复语言包
* Merge branch '6.0' of https://gitee.com/thinkcmf/ThinkCMF into 6.0
* 修复幻灯片页面语言包缺失
* 修复github issues #722
* 6.0.8开工
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

2 participants