| Título | Sourcecodester Employee Management System 1.0 Broken Access Control |
|---|
| Descripción | Multiple Authenticated Broken Access control Only administrators are allowed to decline or approved a Leave request but we due to weak security measures implemented I was able to decline and accept a request for leave as a employee user. |
|---|
| Fuente | ⚠️ https://github.com/jomskiller/Employee-Managemet-System---Broken-Access-Control |
|---|
| Usuario | jomskiller (UID 62271) |
|---|
| Sumisión | 2024-01-25 04:42 (hace 2 años) |
|---|
| Moderación | 2024-01-29 08:15 (4 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 252280 [SourceCodester Employee Management System 1.0 Leave delete-leave.php ID escalada de privilegios] |
|---|
| Puntos | 16 |
|---|