Improper handling of extra parameters in the AccountController (User Profile edit) in Jakub Chodounsky Bonobo Git Server before 6.5.0 allows authenticated users to gain application administrator privileges via additional form parameter submissions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-04-24T19:21:27
Updated: 2024-08-04T22:48:09.024Z
Reserved: 2019-04-12T00:00:00
Link: CVE-2019-11218
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-04-24T20:29:00.530
Modified: 2024-11-21T04:20:44.973
Link: CVE-2019-11218
Redhat
No data.