CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-47651

This vulnerability exists in Shilpi Client Dashboard due to improper handling of multiple parameters in the API endpoint. An authenticated remote attacker could exploit this vulnerability by including multiple “userid” parameters in the API request body leading to unauthorized access of sensitive information belonging to other users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.0%

CVSS Severity

CVSS v3 Score 6.5

References

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0313

Products affected by CVE-2024-47651

Shilpi » Client Dashboard » Version: Any

cpe:2.3:a:shilpi:client_dashboard:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-47651

Products

Pricing

Contact Us