exploitDog

CVE-2024-53496

Опубликовано: 22 авг. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Incorrect access control in the doFilter function of my-site v1.0.2.RELEASE allows attackers to access sensitive components without authentication.

Ссылки

https://gitee.com/fushuling/cve/blob/master/CVE-2024-53496.md
Exploit
Third Party Advisory
https://github.com/5kywa1ker/mall/issues/19
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:winterchens:my-site:2024-08-27:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00124

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-284

Связанные уязвимости

GHSA-7p5q-2w2h-9rvv

CVSS3: 9.8

github

6 месяцев назад

Incorrect access control in the doFilter function of my-site v1.0.2.RELEASE allows attackers to access sensitive components without authentication.

EPSS

Процентиль: 32%

0.00124

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-284