exploitDog

GHSA-r86g-x26v-wr3r

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Incorrect Access Control vulnerability in Online Book Store v1.0 via admin_verify.php, which could let a remote mailicious user bypass authentication and obtain sensitive information.

Incorrect Access Control vulnerability in Online Book Store v1.0 via admin_verify.php, which could let a remote mailicious user bypass authentication and obtain sensitive information.

Ссылки

EPSS

Процентиль: 64%

0.00461

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-269

CWE-287

Связанные уязвимости

CVE-2020-19111

CVSS3: 9.8

nvd

почти 5 лет назад

Incorrect Access Control vulnerability in Online Book Store v1.0 via admin_verify.php, which could let a remote mailicious user bypass authentication and obtain sensitive information.

EPSS

Процентиль: 64%

0.00461

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-269

CWE-287