PT-2023-31252 · Unknown · Book Store Management System
Geraldo Alcântara
+1
·
Published
2023-12-20
·
Updated
2024-08-28
·
CVE-2023-49543
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Book Store Management System version v1
Description
The issue allows attackers to access unauthorized pages and execute administrative functions without authenticating, due to incorrect access control.
Recommendations
For Book Store Management System version v1, update the access control mechanism to properly authenticate and authorize users before allowing access to administrative functions and pages.
Exploit
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Book Store Management System