ГлавнаяУязвимости → CVE-2023-49982
8.8высокая

CVE-2023-49982

Описание

Broken access control in the component /admin/management/users of School Fees Management System v1.0 allows attackers to escalate privileges and perform Administrative actions, including adding and deleting user accounts.

Затрагиваемое ПО
Oretnom23 School fees management system
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/geraldoalcantara/CVE-2023-49982https://www.sourcecodester.com/php/15697/school-fees-management-system-project-php-and-codeigniter-free-source-code.htmlhttps://github.com/geraldoalcantara/CVE-2023-49982https://www.sourcecodester.com/php/15697/school-fees-management-system-project-php-and-codeigniter-free-source-code.html