exploitDog

GHSA-fjcg-2rqh-mpj3

Опубликовано: 25 окт. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Missing authentication in the DeleteStaff method in IDAttend’s IDWeb application 3.1.013 allows deletion of staff information by unauthenticated attackers.

Missing authentication in the DeleteStaff method in IDAttend’s IDWeb application 3.1.013 allows deletion of staff information by unauthenticated attackers.

Ссылки

EPSS

Процентиль: 51%

0.00276

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-306

Связанные уязвимости

CVE-2023-26579

CVSS3: 5.3

nvd

больше 2 лет назад

Missing authentication in the DeleteStaff method in IDAttend’s IDWeb application 3.1.013 allows deletion of staff information by unauthenticated attackers.

EPSS

Процентиль: 51%

0.00276

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-306