High severity8.0NVD Advisory· Published Apr 6, 2017· Updated May 13, 2026
CVE-2017-7571
CVE-2017-7571
Description
public/rolechangeadmin in Faveo 1.9.3 allows CSRF. The impact is obtaining admin privileges.
Affected products
1- cpe:2.3:a:ladybirdweb:faveo_helpdesk:1.9.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- rungga.blogspot.co.id/2017/04/csrf-privilege-escalation-manipulation.htmlnvdExploitTechnical DescriptionThird Party Advisory
- github.com/ladybirdweb/faveo-helpdesk/issues/446nvdExploitTechnical DescriptionThird Party Advisory
- www.exploit-db.com/exploits/41830/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/97493nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.