CVE-2024-3139 | SourceCodester Computer Laboratory Management System 1.0 Users.php save_users id improper authorization

Posted by Angelo Barbosa | Apr 1, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. Affected by this issue is the function save_users of the file /classes/Users.php?f=save. The manipulation of the argument id leads to improper authorization.

This vulnerability is handled as CVE-2024-3139. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-3139 | SourceCodester Computer Laboratory Management System 1.0 Users.php save_users id improper authorization

Related Posts

CVE-2023-46575 | Meshery prior 0.6.179 order sql injection

CVE-2023-1904 | Octopus Server prior 2023.1.11942/2023.2.13151/2023.3.5049 OpenID Client Secret log file

CVE-2024-46898 | Web Tip SHIRASAGI up to 1.19.0 HTTP Request path traversal

CVE-2024-36138 | Node.js up to 18.20.3/20.15.0/22.4.0 on Windows Incomplete Fix CVE-2024-27980 child_process.spawn/child_process.spawnSync command injection