Описание
python_book V1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:timgreen:python_book:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00344
Низкий
7.5 High
CVSS3
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 7.5
github
около 1 года назад
python_book V1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter.
EPSS
Процентиль: 57%
0.00344
Низкий
7.5 High
CVSS3
Дефекты
CWE-863