CVE-2023-49543

Опубликовано: 01 мар. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Incorrect access control in Book Store Management System v1 allows attackers to access unauthorized pages and execute administrative functions without authenticating.

Ссылки

https://github.com/geraldoalcantara/CVE-2023-49543
Exploit
Third Party Advisory
https://owasp.org/Top10/A01_2021-Broken_Access_Control/
Product
https://www.sourcecodester.com/php/15748/book-store-management-system-project-using-php-codeigniter-3-free-source-code.html
Product
https://github.com/geraldoalcantara/CVE-2023-49543
Exploit
Third Party Advisory
https://owasp.org/Top10/A01_2021-Broken_Access_Control/
Product
https://www.sourcecodester.com/php/15748/book-store-management-system-project-using-php-codeigniter-3-free-source-code.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:book_store_management_system_project:book_store_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00302

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-284

Связанные уязвимости

GHSA-4rp7-pgv4-j9jj