{"uuid": "6765b8ea-6ae2-457a-99c3-10b324688ca0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-5RJC-JC28-CWGG", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3830", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-5rjc-jc28-cwgg\n\ud83d\udd25 CVSS Score: 4.2 (CVSS_V3)\n\ud83d\udd39 Description: ### Impact\uff08\u5f71\u97ff\uff09\n\nThere is an Access control vulnerability on the management system of Connect-CMS.\nAffected Version : Connect-CMS v1.8.6, 2.4.6 and earlier\n\n### Patches\uff08\u4fee\u6b63\u30d0\u30fc\u30b8\u30e7\u30f3\uff09\n\nversion v1.8.7, v2.4.7\n\n### Workarounds\uff08\u904b\u7528\u56de\u907f\u624b\u6bb5\uff09\n\nUpgrade Connect-CMS to latest version\n\ud83d\udccf Published: 2025-02-07T20:47:46Z\n\ud83d\udccf Modified: 2025-02-07T20:47:46Z\n\ud83d\udd17 References:\n1. https://github.com/opensource-workshop/connect-cms/security/advisories/GHSA-5rjc-jc28-cwgg\n2. https://github.com/opensource-workshop/connect-cms", "creation_timestamp": "2025-02-07T21:03:02.000000Z"}