CVE-2021-41974

Tad Book3 editing book page does not perform identity verification. Remote attackers can use the vulnerability to view and modify arbitrary content of books without permission.
References
Link Resource
https://www.twcert.org.tw/tw/cp-132-5173-e21ba-1.html Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:tad_book3_project:tad_book3:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-10-08 16:15

Updated : 2024-02-28 18:48


NVD link : CVE-2021-41974

Mitre link : CVE-2021-41974

CVE.ORG link : CVE-2021-41974


JSON object : View

Products Affected

tad_book3_project

  • tad_book3
CWE
CWE-306

Missing Authentication for Critical Function

CWE-285

Improper Authorization