CVE-2024-7080
SourceCodester Insurance Management System direct request
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
SourceCodester Insurance Management System direct request
| Assigner | VulDB |
| Reserved | 2024-07-24 |
| Published | 2024-07-24 |
| Updated | 2024-08-01 |
A vulnerability was found in SourceCodester Insurance Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /E-Insurance/. The manipulation leads to direct request. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-272365 was assigned to this vulnerability.
In SourceCodester Insurance Management System 1.0 wurde eine problematische Schwachstelle ausgemacht. Es geht um eine nicht näher bekannte Funktion der Datei /E-Insurance/. Mittels dem Manipulieren mit unbekannten Daten kann eine direct request-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung.
| CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N | |
| CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N | |
| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N | |
| CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N |
| 2024-07-24: | Advisory disclosed |
| 2024-07-24: | VulDB entry created |
| 2024-07-24: | VulDB entry last update |
Xu Mingming (VulDB User)
https://vuldb.com/?id.272365 (VDB-272365 | SourceCodester Insurance Management System direct request)
https://vuldb.com/?ctiid.272365 (VDB-272365 | CTI Indicators (IOB, IOC, TTP, IOA))
https://vuldb.com/?submit.379487 (Submit #379487 | sourcecodester Insurance Management System v1.0 directory traversal)
https://github.com/Xu-Mingming/cve/blob/main/bianli.md
