juzaweb CMS Improper Access Control Vulnerability in Email Logs Page

Vulnerability

An improper access control vulnerability has been identified in juzaweb CMS versions through 3.4.2. The issue affects the Email Logs Page within the admin control panel, specifically the file /admin-cp/logs/email. This vulnerability allows remote attackers to manipulate access controls, potentially leading to unauthorized access or actions.

Impact

Exploitation of this vulnerability could result in unauthorized access to email logs, allowing attackers to view or manipulate sensitive information.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

9.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

9.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

juzaweb CMS Improper Access Control Vulnerability in Email Logs Page

Vulnerability

Impact

Affected Products

juzaweb CMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating