CVE-2023-3290 | easyappointments up to 1.4.x /customers authorization

Posted by Angelo Barbosa | Jul 9, 2024 | CVE

A vulnerability classified as problematic has been found in easyappointments up to 1.4.x. This affects an unknown part of the file /customers. The manipulation leads to authorization bypass.

This vulnerability is uniquely identified as CVE-2023-3290. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-3290 | easyappointments up to 1.4.x /customers authorization

Related Posts

CVE-2024-8312 | GitLab Community Edition/Enterprise Edition up to 17.3.5/17.4.2/17.5.0 Diff View cross site scripting

CVE-2024-1325 | Live Sales Notification for Woocommerce Plugin up to 3.4.3 on WordPress ajax_cancel_review cross-site request forgery

CVE-2024-25906 | Comments Like Dislike Plugin up to 1.2.1 on WordPress unknown vulnerability

CVE-2024-43829 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 drm_cvt_mode null pointer dereference