Vulnerabilities > CVE-2024-7799 - Unspecified vulnerability in Oretnom23 Simple Online Bidding System 1.0

CVSS 7.3 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

LOW

network

low complexity

oretnom23

NVD

Published: 2024-08-15

Updated: 2024-08-19

Summary

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/bidding/admin/users.php. The manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Vulnerable Configurations

Part	Description	Count
Application	Oretnom23 Oretnom23 Simple Online Bidding System 1.0	1

References

https://vuldb.com/?id.274652
https://vuldb.com/?ctiid.274652
https://vuldb.com/?submit.390302
https://github.com/Wsstiger/cve/blob/main/Sourcecoster_unauthorized.md