CVE-2021-41976

Summary

Tad Uploader edit book list function is vulnerable to authorization bypass, thus remote attackers can use the function to amend the folder names in the book list without logging in.

Affected Software

VendorProductVersion RangeStatus
TadUploader0 <= 3.5.3affected

Weaknesses

  • CWE-285: CWE-285 Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

References