CVE-2024-40480 | Kashipara Online Exam System 1.0 Administrator Dashboard /admin/update.php access control

Inserito da Angelo Barbosa | Ago 9, 2024 | CVE

A vulnerability classified as critical was found in Kashipara Online Exam System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/update.php of the component Administrator Dashboard. The manipulation leads to improper access controls.

This vulnerability is known as CVE-2024-40480. The attack can be launched remotely. There is no exploit available.

CVE-2024-40480 | Kashipara Online Exam System 1.0 Administrator Dashboard /admin/update.php access control

Post correlati

CVE-2024-28119 | grav up to 1.7.44 Front Matter code injection (GHSA-2m7x-c7px-hp58)

CVE-2022-36028 | BigBlueButton Greenlight up to 2.12.x Login Page return_to redirect

CVE-2024-25093 | Milan Petrovic GD Rating System Plugin up to 3.5 on WordPress cross site scripting

CVE-2024-37211 | Ali2Woo Lite Plugin up to 3.3.5 on WordPress cross site scripting