PT-2022-25876 · Unknown · Codeigniter+1
Rashidkhan Pathan
·
Published
2022-11-23
·
Updated
2025-04-28
·
CVE-2022-41446
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Record Management System using CodeIgniter version 1.0
Description
The issue allows attackers to access and modify user data due to an access control problem in the /Admin/dashboard.php endpoint.
Recommendations
For Record Management System using CodeIgniter version 1.0, consider restricting access to the /Admin/dashboard.php endpoint until a fix is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Codeigniter
Record Management System