| Título | PHPGurukul Pre-School Enrollment System 1.0 access control |
|---|
| Descripción | There is a vertical override vulnerability in the/admin/add-subadmin.php system. In the system design, only super administrators can add sub administrators, but due to the lack of verification of user session identity in request verification. Resulting in low privileged users being able to successfully send requests to add sub administrators directly.Please refer to the following source code for details. |
|---|
| Fuente | ⚠️ https://github.com/SECWG/cve/issues/3 |
|---|
| Usuario | WenGui (UID 82184) |
|---|
| Sumisión | 2025-03-05 17:11 (hace 1 Año) |
|---|
| Moderación | 2025-03-07 07:21 (2 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 298904 [PHPGurukul Pre-School Enrollment System 1.0 Sub Admin /admin/add-subadmin.php escalada de privilegios] |
|---|
| Puntos | 19 |
|---|