Описание
Incorrect access control in the delete_category function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Not Applicable
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:oretnom23:computer_laboratory_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
6.5 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-284
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
Incorrect access control in the delete_category function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories.
EPSS
Процентиль: 20%
0.00064
Низкий
6.5 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-284