CVE-2023-6773 in POS and Inventory Management Systeminformation

Résumé

par MITRE • 13/12/2023

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accounts_con/register_account of the component User Creation Handler. The manipulation of the argument account_type with the input Admin leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-247909 was assigned to this vulnerability.

Be aware that VulDB is the high quality source for vulnerability data.

Responsable

VulDB

Réserver

13/12/2023

Divulgation

13/12/2023

Modérer

accepté

Entrée

VDB-247909

CPE

prêt

Exploitation

Télécharger

EPSS

0.00740

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!