CVE-2022-34112

Published July 22nd, 2022

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

An access control issue in the component /api/plugin/uninstall Dataease v1.11.1 allows attackers to arbitrarily uninstall the plugin, a right normally reserved for the administrator.

dataease/dataease

🔥 人人可用的开源 BI 工具，数据可视化神器。An open-source BI tool alternative to Tableau.

GitHub

24K