2025-06-09 12:26:11
INCIBE
PUBLISHED
Incorrect authorization vulnerability in TCMANs GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the applications users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1.