Описание
A vulnerability was found in SourceCodester Train Scheduler App 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /train_scheduler_app/?action=delete. The manipulation of the argument id leads to improper control of resource identifiers. The attack may be launched remotely. The identifier of this vulnerability is VDB-212504.
Ссылки
- ExploitThird Party Advisory
- Broken LinkThird Party Advisory
- Third Party Advisory
- ExploitThird Party Advisory
- Broken LinkThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
EPSS
5.4 Medium
CVSS3
9.1 Critical
CVSS3
Дефекты
Связанные уязвимости
A vulnerability was found in SourceCodester Train Scheduler App 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /train_scheduler_app/?action=delete. The manipulation of the argument id leads to improper control of resource identifiers. The attack may be launched remotely. The identifier of this vulnerability is VDB-212504.
EPSS
5.4 Medium
CVSS3
9.1 Critical
CVSS3