Unknown · Php Task Management System · CVE-2024-28613
**Name of the Vulnerable Software and Affected Versions**
PHP Task Management System version 1.0
**Description**
The issue allows a remote attacker to escalate privileges and obtain sensitive information. This is achieved via the `task id` parameter of the "task-details.php" and "edit-task.php" components.
**Recommendations**
For PHP Task Management System version 1.0, avoid using the `task id` parameter in the affected API endpoints until the issue is resolved.
As a temporary workaround, consider restricting access to the "task-details.php" and "edit-task.php" components to minimize the risk of exploitation.