CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-57152

Incorrect access control in the preHandle function of my-site v1.0.2 allows attackers to access sensitive components without authentication via the cn.luischen.interceptor.BaseInterceptor class

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/WinterChenS/my-site/issues/92

Products affected by CVE-2024-57152

Winterchens » My-Site » Version: 1.0.2

cpe:2.3:a:winterchens:my-site:1.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-57152

Products

Pricing

Contact Us