PT-2024-14113 · Repute Infosystems · Bookingpress

Abdi Pranata

Published

2024-04-24

Updated

2024-04-24

CVE-2023-51405

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Repute Infosystems BookingPress versions 1.0.0 through 1.0.74

Description The issue is related to an Improper Authentication vulnerability, which allows accessing functionality not properly constrained by ACLs.

Recommendations For versions 1.0.0 through 1.0.74, update to a version that contains a fix for this issue, as the current version allows unauthorized access to certain functionality due to improper authentication.

Fix

Incorrect Authorization

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863CWE-287

Related Identifiers

CVE-2023-51405

Affected Products

Bookingpress

PT-2024-14113 · Repute Infosystems · Bookingpress

CVE-2023-51405

Weakness Enumeration

Related Identifiers

Affected Products

References · 3