CVE-2024-9082

Name of the Vulnerable Software and Affected Versions SourceCodester Online Eyewear Shop version 1.0

Description A critical issue affects some unknown functionality of the file /Users.phpf=save of the component User Creation Handler. The manipulation of the type argument with the input 1 leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Recommendations For SourceCodester Online Eyewear Shop version 1.0, as a temporary workaround, consider restricting access to the /Users.phpf=save file until a patch is available. Additionally, avoid using the type argument with the input 1 in the affected User Creation Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.