| عنوان | Online Graduate Tracer System for College of ICT Alumni has unauthorized access vulnerability |
|---|
| الوصف | Online Graduate Tracer System for College of ICT Alumni has unauthorized access vulnerability
Users can access admin pages without login
First,we try to get into the admin page
http://localhost/tracking/admin/
the website lead us to http://localhost/tracking/admin/adminlog.php and require login
Then we try to login to access the admin function page
When we visit the admin pages, delete all cookies and refresh to see if the website still working
Source Code Link : https://www.sourcecodester.com/php/15904/online-graduate-tracer-system-college-ict-alumni.html |
|---|
| المصدر | ⚠️ https://github.com/Jlan45/OGTSFCOIA/blob/main/unauthorizedaccess.md |
|---|
| المستخدم | J1an (UID 44361) |
|---|
| ارسال | 04/04/2023 08:35 PM (3 سنوات منذ) |
|---|
| الاعتدال | 05/04/2023 07:53 AM (11 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 224994 [SourceCodester Online Graduate Tracer System 1.0 admin/ توثيق ضعيف] |
|---|
| النقاط | 20 |
|---|