The Web interface of Evolution Controller Versions 2.04...
Critical severity
Unreviewed
Published
Apr 15, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Apr 15, 2024
Published to the GitHub Advisory Database
Apr 15, 2024
The Web interface of Evolution Controller Versions 2.04.560.31.03.2024 and below contains poorly configured access control, allowing for an unauthenticated attacker to update and add user profiles within the application, and gain full access of the site.
References