CVE-2023-3288 | easyappointments up to 1.4.x /providers authorization

Posted by Angelo Barbosa | Jul 9, 2024 | CVE

A vulnerability has been found in easyappointments up to 1.4.x and classified as critical. Affected by this vulnerability is an unknown functionality of the file /providers. The manipulation leads to authorization bypass.

This vulnerability is known as CVE-2023-3288. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-3288 | easyappointments up to 1.4.x /providers authorization

Related Posts

CVE-2024-33516 | Aruba ArubaOS up to 8.10.0.10/8.11.2.1/10.4.1.0/10.5.1.0 Auth Service denial of service (ARUBA-PSA-2024-004)

CVE-2024-38419 | Qualcomm Snapdragon Auto up to XR1 Platform HGSL use after free

CVE-2024-4367 | Mozilla Thunderbird up to 115.10 PDF.js type conversion (Bug 1893645)

CVE-2024-3052 | Silabs Z-IP Gateway SDK prior 7.14.00 S2 Nonce Get Command Class unusual condition