exploitDog

GHSA-5593-7683-g8pr

Опубликовано: 27 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

An issue was discovered in eTimeTrackLite Web thru 12.0 (20250704). There is a permission control flaw that allows unauthorized attackers to access specific routes and modify database connection configurations.

An issue was discovered in eTimeTrackLite Web thru 12.0 (20250704). There is a permission control flaw that allows unauthorized attackers to access specific routes and modify database connection configurations.

Ссылки

EPSS

Процентиль: 14%

0.00045

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2025-60291

CVSS3: 9.1

nvd

3 месяца назад

An issue was discovered in eTimeTrackLite Web thru 12.0 (20250704). There is a permission control flaw that allows unauthorized attackers to access specific routes and modify database connection configurations.

EPSS

Процентиль: 14%

0.00045

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-284