| शीर्षक | SourceCodester Free Hospital Management System for Small Practices 1.0 has a vertical privilege escalation vulnerability |
|---|
| विवरण | SourceCodester Free Hospital Management System for Small Practices 1.0 has a vertical privilege escalation vulnerability, allowing attackers to intercept redirects and gain unauthorized access to the administrative backend with system administrator privileges.The developer implemented a redirect in the permission check without using the die() or exit() functions to terminate the program execution, which resulted in vertical privilege escalation. |
|---|
| स्रोत | ⚠️ https://github.com/Yesec/Free-Hospital-Management-System-for-Small-Practices/blob/main/vertical%20privilege%20escalation/vuln.md |
|---|
| उपयोगकर्ता | YeSec (UID 50956) |
|---|
| सबमिशन | 31/07/2023 07:27 AM (3 साल पहले) |
|---|
| संयम | 05/08/2023 06:40 PM (5 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 236216 [SourceCodester Free Hospital Management System for Small Practices Redirect delete-doctor.php?id=2 अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|