PT-2026-23939 · Unknown · Sourcecodester Client Database Management System

Adarsh007

Publicado

2026-03-08

Atualizado

2026-03-13

CVE-2026-3734

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SourceCodester Client Database Management System version 1.0

Description A flaw exists in SourceCodester Client Database Management System that allows improper authorization. The issue is related to the manipulation of the manager id argument in the /fetch manager details.php file. This manipulation occurs within an unknown function. The attack can be initiated remotely. The exploit has been published.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Incorrect Privilege Assignment

Improper Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-266CWE-285

Identificadores relacionados

CVE-2026-3734

Produtos afetados

Sourcecodester Client Database Management System

PT-2026-23939 · Unknown · Sourcecodester Client Database Management System

CVE-2026-3734

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13