CVE-2024-2575 | SourceCodester Employee Task Management System 1.0 /task-details.php task_id authorization

Inserito da Angelo Barbosa | Mar 17, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Employee Task Management System 1.0. Affected by this issue is some unknown functionality of the file /task-details.php. The manipulation of the argument task_id leads to authorization bypass.

This vulnerability is handled as CVE-2024-2575. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-2575 | SourceCodester Employee Task Management System 1.0 /task-details.php task_id authorization

Post correlati

CVE-2024-27517 | Webasyst 2.9.9 Blog cross site scripting (Issue 377)

CVE-2024-31870 | IBM i 7.2/7.3/7.4/7.5 USRPRF Object observable response discrepancy (XFDB-287174)

CVE-2023-4468 | Poly Trio 8800/Trio C60 Poly Lens Management Cloud Registration authorization (MZ-23-01)

CVE-2024-3736 | cym1102 nginxWebUI up to 3.9.9 /adminPage/main/upload unrestricted upload