📦 Cipace

CVE-2024-50619 allows authenticated low-privileged users in CIPPlanner CIPAce to escalate privileges by manipulating user IDs to access other accounts and modify disabled user roles. This affects all ...

This vulnerability allows authorized users to upload executable files through CIPPlanner CIPAce's rich text editor and document management components. Attackers can upload malicious executables that m...

CVE-2024-50618 is an authentication bypass vulnerability in CIPPlanner CIPAce software where attackers can gain full authentication if they compromise a single-factor authentication secret. This affec...