exploitDog

GHSA-mf6g-8599-mm62

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion.

Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion.

Ссылки

EPSS

Процентиль: 60%

0.00398

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-306

Связанные уязвимости

CVE-2019-8292

CVSS3: 5.3

nvd

больше 6 лет назад

Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion.

EPSS

Процентиль: 60%

0.00398

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-306