CVE-2024-12483
Dromara UJCMS User ID id authorization
In short
A flaw in Dromara UJCMS allows attackers to bypass authorization checks when accessing user information through the /users/id endpoint. This means an attacker might be able to view or access user data they shouldn't have permission to see.
Technical detail
An authorization bypass vulnerability exists in the User ID Handler component of Dromara UJCMS up to version 9.6.3 affecting the /users/id endpoint. The vulnerability stems from improper access control (CWE-285, CWE-639), allowing remote attackers to circumvent authentication mechanisms; successful exploitation requires moderate attack complexity and specific preconditions but could lead to unauthorized access to user resources.
Summary generated and translated by AI from the official description.
A vulnerability classified as problematic has been found in Dromara UJCMS up to 9.6.3. This affects an unknown part of the file /users/id of the component User ID Handler. The manipulation leads to authorization bypass. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used.
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
Affected products
Dromara · UJCMSpublic PoCs found — 2
cve_referencegithub.com/cydtseng/Vulnerability-Research/blob/main/ujcms/IDOR-UsernameEnumeration.mdunverifiedexploitdbwww.exploit-db.com/exploits/52264unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →