Vulnerabilities > CVE-2024-41332 - Unspecified vulnerability in Oretnom23 Computer Laboratory Management System 1.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

oretnom23

NVD

Published: 2024-08-12

Updated: 2024-08-21

Summary

Incorrect access control in the delete_category function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories.

Vulnerable Configurations

Part	Description	Count
Application	Oretnom23 Oretnom23 Computer Laboratory Management System 1.0	1

References

https://www.linkedin.com/in/sampath-kumar-kadajari-4b18891a7
https://packetstormsecurity.com/files/179890/Computer-Laboratory-Management-System-1.0-Privilege-Escalation.html