Remote authenticated user privilege escalation in Kupu versions 3.3.0-3.3.6, 4.0.0-4.0.10, 4.1.0-4.1.6, and 4.2.0-4.2.7

Remote authenticated user privilege escalation in Kupu versions 3.3.0-3.3.6, 4.0.0-4.0.10, 4.1.0-4.1.6, and 4.2.0-4.2.7

CVE-2015-7317 · MEDIUM Severity

AV:N/AC:M/AU:S/C:P/I:P/A:N

Kupu 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, and 4.2.0 through 4.2.7 allows remote authenticated users to edit Kupu settings.

Learn more about our User Device Pen Test.