CVE-2023-31704

Опубликовано: 13 июл. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Sourcecodester Online Computer and Laptop Store 1.0 is vulnerable to Incorrect Access Control, which allows remote attackers to elevate privileges to the administrator's role.

Ссылки

https://github.com/d34dun1c02n/CVE-2023-31704
Exploit
Third Party Advisory
https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
Product
https://github.com/d34dun1c02n/CVE-2023-31704
Exploit
Third Party Advisory
https://www.sourcecodester.com/php/16397/online-computer-and-laptop-store-using-php-and-mysql-source-code-free-download.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:oretnom23:online_computer_and_laptop_store:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01201

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other

CWE-863

Связанные уязвимости

GHSA-rg52-xrwc-xm79