CVE-2018-5328
EUVD-2018-1710715.01.2018, 21:29
ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows access to various /UserManagement/ privileged modules without authenticating the user; an attacker can misuse these functionalities to perform unauthorized actions, as demonstrated by Edit User Details.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| beims | contractorweb.net | 5.18.0.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration