CVE-2023-1432
SourceCodester Online Food Ordering System POST Request access control
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability was found in SourceCodester Online Food Ordering System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /fos/admin/ajax.php?action=save_settings of the component POST Request Handler. The manipulation leads to improper access controls. The attack may be launched remotely. VDB-223214 is the identifier assigned to this vulnerability.
Eine Schwachstelle wurde in SourceCodester Online Food Ordering System 2.0 gefunden. Sie wurde als kritisch eingestuft. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei /fos/admin/ajax.php?action=save_settings der Komponente POST Request Handler. Mit der Manipulation mit unbekannten Daten kann eine improper access controls-Schwachstelle ausgenutzt werden. Umgesetzt werden kann der Angriff über das Netzwerk.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-03-16 CVE Reserved
- 2023-03-16 CVE Published
- 2024-08-02 CVE Updated
- 2024-10-06 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-284: Improper Access Control
CAPEC
References (1)
URL | Tag | Source |
---|---|---|
https://vuldb.com/?id.223214 | Technical Description |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Online Food Ordering System Project Search vendor "Online Food Ordering System Project" | Online Food Ordering System Search vendor "Online Food Ordering System Project" for product "Online Food Ordering System" | 2.0 Search vendor "Online Food Ordering System Project" for product "Online Food Ordering System" and version "2.0" | - |
Affected
|