CVE-2023-45649

Name of the Vulnerable Software and Affected Versions CodePeople Appointment Hour Booking versions prior to 1.4.23

Description The issue is related to a missing authorization vulnerability in CodePeople Appointment Hour Booking, which allows the exploitation of incorrectly configured access control security levels.

Recommendations For versions prior to 1.4.23, update to version 1.4.23 or later to resolve the issue. As a temporary workaround, consider reviewing and correcting the access control security levels configuration to minimize the risk of exploitation.