Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ATutor Improper Privilege Management Vulnerability - CVE-2017-1000003 - Vulnerability Database
ATutor

ATutor Improper Privilege Management Vulnerability - CVE-2017-1000003

Critical
Reference: CVE-2017-1000003
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-1000003
Title: ATutor Improper Privilege Management Vulnerability
Overview:

ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Module component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Alternative Content component resulting in privilege escalation.