Lucene search
GoogleOSV:CVE-2022-21660HistoryFeb 09, 2022 - 8:15 p.m.
CVE-2022-21660
2022-02-0920:15:12
Google
osv.dev
8
cve-2022-21660
gin-vue-admin
backstage management
vue
gin
privilege escalation
authentication
Gin-vue-admin is a backstage management system based on vue and gin. In versions prior to 2.4.7 low privilege users are able to modify higher privilege users. Authentication is missing on the setUserInfo function. Users are advised to update as soon as possible. There are no known workarounds.
Related
nvd
nvd
CVE-2022-21660
2022-02-09 20:15:12
cve
cve
CVE-2022-21660
2022-02-09 20:15:12
githubexploit
githubexploit
Exploit for Missing Authorization in Gin-Vue-Admin Project Gin-Vue-Admin
2022-01-10 05:50:35
cvelist
cvelist
CVE-2022-21660 Missing authorization in gin-vue-admin
2022-02-09 19:55:09
veracode
veracode
Authorization Bypass
2022-02-10 08:31:22
prion
prion
Authentication flaw
2022-02-09 20:15:00