exploitDog

CVE-2026-3764

Опубликовано: 08 мар. 2026

Источник: nvd

CVSS3: 7.3

CVSS2: 7.5

EPSS Низкий

Описание

A vulnerability was determined in SourceCodester Client Database Management System 1.0. The impacted element is an unknown function of the file /superadmin_user_update.php. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

Ссылки

https://gist.github.com/Adarshh-A/77dedc295e377e0492d15071e9bb2498
Exploit
Third Party Advisory
https://vuldb.com/?ctiid.349742
Permissions Required
VDB Entry
https://vuldb.com/?id.349742
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.768195
Third Party Advisory
VDB Entry
https://www.sourcecodester.com/
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:lerouxyxchire:client_database_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 14%

0.00046

Низкий

7.3 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-266

Связанные уязвимости

GHSA-h82f-3qc4-wmjf

CVSS3: 7.3

github

около 1 месяца назад

A vulnerability was determined in SourceCodester Client Database Management System 1.0. The impacted element is an unknown function of the file /superadmin_user_update.php. This manipulation causes improper authorization. The attack can be initiated remotely. The exploit has been publicly disclosed and may be utilized.

EPSS

Процентиль: 14%

0.00046

Низкий

7.3 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-266