← Volver a CVEs
CVE-2019-11218
N/ADescripcion
Improper handling of extra parameters in the AccountController (User Profile edit) in Jakub Chodounsky Bonobo Git Server before 6.5.0 allows authenticated users to gain application administrator privileges via additional form parameter submissions.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado4/24/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
bonobogitserver:bonobo_git_server
Debilidades (CWE)
CWE-20
Referencias
https://bonobogitserver.com/changelog/#version-650(cve@mitre.org)
https://flab.cesnet.cz/advisories/cve-2019-11218(cve@mitre.org)
https://bonobogitserver.com/changelog/#version-650(af854a3a-2127-422b-91ae-364da2661108)
https://flab.cesnet.cz/advisories/cve-2019-11218(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.