Vulnerabilities > CVE-2023-49979 - Missing Authorization vulnerability in Mayurik Best Student Management System 1.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
mayurik
CWE-862
NVD
Published: 2024-03-21
Updated: 2025-03-05

Summary

A directory listing vulnerability in Customer Support System v1 allows attackers to list directories and sensitive files within the application without requiring authorization.

Vulnerable Configurations

Part Description Count
Application
Mayurik
1

Common Weakness Enumeration (CWE)

References