Insufficient Authorization Check in Wade Graphic Design FANTSY: Remote User Privilege Escalation

Insufficient Authorization Check in Wade Graphic Design FANTSY: Remote User Privilege Escalation

CVE-2023-28698 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Wade Graphic Design FANTSY has a vulnerability of insufficient authorization check. An unauthenticated remote user can exploit this vulnerability by modifying URL parameters to gain administrator privileges to perform arbitrary system operation or disrupt service.

Learn more about our User Device Pen Test.