CVE-2023-6773 in POS and Inventory Management Systemthông tin

Tóm tắt

Bởi MITRE • 13/12/2023

A vulnerability has been found in CodeAstro POS and Inventory Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /accounts_con/register_account of the component User Creation Handler. The manipulation of the argument account_type with the input Admin leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-247909 was assigned to this vulnerability.

Be aware that VulDB is the high quality source for vulnerability data.

chịu trách nhiệm

VulDB

Đặt trước

13/12/2023

Tiết lộ

13/12/2023

Kiểm duyệt

được chấp nhận

Khai thác

Tải xuống

EPSS

0.00740

KEV

không

Các hoạt động

rất thấp

Nguồn

Want to know what is going to be exploited?

We predict KEV entries!