Incorrect Access Control Vulnerability in MyAdmin v1.0's Personal Center View

Incorrect Access Control Vulnerability in MyAdmin v1.0's Personal Center View

CVE-2021-37791 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

MyAdmin v1.0 is affected by an incorrect access control vulnerability in viewing personal center in /api/user/userData?userCode=admin.

Learn more about our Api Penetration Testing.