CVE-2024-11485 | Code4Berry Decoration Management System 1.0 User userregister.php permission

A vulnerability, which was classified as critical, has been found in Code4Berry Decoration Management System 1.0. Affected by this issue is some unknown functionality of the file /decoration/admin/userregister.php of the component User Handler. The manipulation leads to permission issues.

This vulnerability is handled as CVE-2024-11485. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-11485 | Code4Berry Decoration Management System 1.0 User userregister.php permission

Related Posts

CVE-2023-52179 | WebCodingPlace Product Expiry for WooCommerce Plugin up to 2.5 on WordPress authorization

CVE-2023-48684 | Acronis Cyber Protect Cloud Agent prior 37758 authorization

CVE-2024-9932 | Wux Blog Editor Plugin up to 3.0.0 on WordPress unrestricted upload

CVE-2022-48701 | Linux Kernel up to 5.19.8 Audio Device __snd_usb_parse_audio_interface out-of-bounds