2026-01-26 00:00:00
mitre
PUBLISHED
Incorrect access control in the importUser function of SpringBlade v4.5.0 allows attackers with low-level privileges to arbitrarily import sensitive user data.