CVE-2024-9082 | SourceCodester Online Eyewear Shop 1.0 User Creation /Users.phpf=save type improper authorization

Inserito da Angelo Barbosa | Set 21, 2024 | CVE

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Users.phpf=save of the component User Creation Handler. The manipulation of the argument type with the input 1 leads to improper authorization.

This vulnerability is handled as CVE-2024-9082. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-9082 | SourceCodester Online Eyewear Shop 1.0 User Creation /Users.phpf=save type improper authorization

Post correlati

CVE-2024-7884 | Internet Computer ic-cdk up to 0.15.0 ic_cdk::call memory leak

CVE-2024-35224 | OpenProject prior 13.4.2/14.0.2/14.1.0 Add Attachment cross site scripting (GHSA-h26c-j8wg-frjc)

CVE-2024-4999 | Ligowave UNITY/PRO/MIMO/APC Propeller Web-based Management Interface command injection

CVE-2024-41432 | Likeshop up to 2.5.7.20210811 Header X-Forwarded/Client-IP access control