CVE-2023-38055 | easyappointments up to 1.4.x /services/{serviceId} authorization

Inserito da Angelo Barbosa | Lug 9, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in easyappointments up to 1.4.x. This issue affects some unknown processing of the file /services/{serviceId}. The manipulation leads to authorization bypass.

The identification of this vulnerability is CVE-2023-38055. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38055 | easyappointments up to 1.4.x /services/{serviceId} authorization

Post correlati

CVE-2023-48759 | Crocoblock JetElements for Elementor Plugin up to 2.6.13 on WordPress authorization

CVE-2024-7659 | projectsend up to r1605 Password Reset Token includes/functions.php generate_random_string random values

CVE-2023-52266 | ehttp up to 1.0.5 epoll_socket.cpp read_func use after free (Issue 38)

CVE-2024-48963 | Snyk Cli 1.996.0 PHP Project Scanning os command injection