| Título | SourceCodester Alumni Management System 1.0 Missing Authorization |
|---|
| Descrição | This report describes a critical authorization bypass vulnerability in Alumni Management System version 1.0 developed by SourceCodester. The vulnerability allows any authenticated user to delete content owned by other users without proper authorization checks, leading to unauthorized data destruction and denial of service.
|
|---|
| Fonte | ⚠️ https://hackmd.io/@mlgzackfly/SourceCodester |
|---|
| Utilizador | mlgzackfly (UID 92073) |
|---|
| Submissão | 13/11/2025 14h04 (há 7 meses) |
|---|
| Moderação | 20/11/2025 07h58 (7 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 333041 [SourceCodester Alumni Management System 1.0 Delete admin/admin_class.php ID Elevação de Privilégios] |
|---|
| Pontos | 18 |
|---|