Vulnerability Details CVE-2023-3018
A vulnerability was found in SourceCodester Lost and Found Information System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/?page=user/list. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-230362 is the identifier assigned to this vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.1%
CVSS Severity
CVSS v3 Score 6.3
CVSS v2 Score 6.5
References
- https://medium.com/@akashpandey380/lost-and-found-information-system-v1-0-idor-cve-2023-977966c4450d
- https://vuldb.com/?ctiid.230362
- https://vuldb.com/?id.230362
- https://medium.com/@akashpandey380/lost-and-found-information-system-v1-0-idor-cve-2023-977966c4450d
- https://vuldb.com/?ctiid.230362
- https://vuldb.com/?id.230362
Products affected by CVE-2023-3018
-
cpe:2.3:a:oretnom23:lost_and_found_information_system:1.0