إرسال #743459: SourceCodester Gas Agency Management System 1.0 Improper Access Controlsالمعلومات

عنوان	SourceCodester Gas Agency Management System 1.0 Improper Access Controls
الوصف	The SourceCodester Gas Agency Management System is vulnerable to Improper Access Control, allowing a normal authenticated user to perform administrative actions such as creating new users, bookings, consumers, and cylinders by directly invoking privileged backend endpoints. The application relies solely on client-side UI restrictions to limit access to administrative functionality. However, no server-side authorization checks are implemented to verify the user’s role before processing sensitive requests, resulting in a privilege escalation vulnerability.
المصدر	⚠️ https://github.com/Asim-QAZi/Improper-Access-Control-in-SourceCodester-Gas-Agency-Management-System
المستخدم	moasim (UID 93970)
ارسال	21/01/2026 12:26 PM (5 أشهر منذ)
الاعتدال	05/02/2026 08:21 PM (15 days later)
الحالة	تمت الموافقة
إدخال VulDB	344591 [SourceCodester Gas Agency Management System 1.0 createUser.php تجاوز الصلاحيات]
النقاط	20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!