Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2024-35353
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Users.php?f=save. Manipulating the argument id can result in improper authorization.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.004
EPSS Ranking
58.0%
CVSS Severity
CVSS v3 Score
9.8
References
https://vuln.pentester.stream/pentester-vulnerability-research/post/2298777/vuln8-insecure-direct-object-references-idor
https://vuln.pentester.stream/pentester-vulnerability-research/post/2298777/vuln8-insecure-direct-object-references-idor
Products affected by CVE-2024-35353
Dino Physics School Assistant Project
»
Dino Physics School Assistant
»
Version:
2.3
cpe:2.3:a:dino_physics_school_assistant_project:dino_physics_school_assistant:2.3
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved