Описание
A vulnerability, which was classified as critical, was found in pbrong hrms up to 1.0.1. This affects the function HrmsDB of the file \resource\resource.go. The manipulation of the argument user_cookie leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 16%
0.00051
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-266
Связанные уязвимости
CVSS3: 7.3
github
11 месяцев назад
A vulnerability, which was classified as critical, was found in pbrong hrms up to 1.0.1. This affects the function HrmsDB of the file \resource\resource.go. The manipulation of the argument user_cookie leads to improper authorization. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 16%
0.00051
Низкий
7.3 High
CVSS3
7.5 High
CVSS2
Дефекты
CWE-266