| 标题 | SourceCodester Alumni Management System 1.0 Missing Authorization |
|---|
| 描述 | This report describes a critical authorization bypass vulnerability in Alumni Management System version 1.0 developed by SourceCodester. The vulnerability allows any authenticated user to delete content owned by other users without proper authorization checks, leading to unauthorized data destruction and denial of service.
|
|---|
| 来源 | ⚠️ https://hackmd.io/@mlgzackfly/SourceCodester |
|---|
| 用户 | mlgzackfly (UID 92073) |
|---|
| 提交 | 2025-11-13 14時04分 (7 月前) |
|---|
| 管理 | 2025-11-20 07時58分 (7 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 333041 [SourceCodester Alumni Management System 1.0 Delete admin/admin_class.php 标识符 权限提升] |
|---|
| 积分 | 18 |
|---|