CVE-2022-38935

Published February 15th, 2023

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

An issue was discovered in NiterForum version 2.5.0-beta in /src/main/java/cn/niter/forum/api/SsoApi.java and /src/main/java/cn/niter/forum/controller/AdminController.java, allows attackers to gain escalated privileges.

yourkevin/NiterForum

尼特社区-NiterForum-一个论坛/社区程序。后端Springboot/MyBatis/Maven/MySQL，前端Thymeleaf/Layui。可供初学者，学习、交流使用，喜欢的话，恳请给个star(*❦ω❦)。同时我也更新了NiterApp，完美适配NiterForum，欢迎移步md下载体验。

GitHub

686