Описание
An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music/index.php?page=edit_user in Kashipara Music Management System v1.0. This allows a low privileged attacker to take over the administrator account.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:lopalopa:music_management_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00083
Низкий
7.6 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-269
Связанные уязвимости
CVSS3: 7.6
github
больше 1 года назад
An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music/index.php?page=edit_user in Kashipara Music Management System v1.0. This allows a low privileged attacker to take over the administrator account.
EPSS
Процентиль: 24%
0.00083
Низкий
7.6 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-269