| Título | SourceCodester Alumni Management System 1.0 Missing Authorization |
|---|
| Descripción | This report describes a critical authorization bypass vulnerability in Alumni Management System version 1.0 developed by SourceCodester. The vulnerability allows any authenticated user to delete content owned by other users without proper authorization checks, leading to unauthorized data destruction and denial of service.
|
|---|
| Fuente | ⚠️ https://hackmd.io/@mlgzackfly/SourceCodester |
|---|
| Usuario | mlgzackfly (UID 92073) |
|---|
| Sumisión | 2025-11-13 14:04 (hace 7 meses) |
|---|
| Moderación | 2025-11-20 07:58 (7 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 333041 [SourceCodester Alumni Management System 1.0 Delete admin/admin_class.php ID escalada de privilegios] |
|---|
| Puntos | 18 |
|---|