Vulnerabilities > OBL ONG

DATE CVE VULNERABILITY TITLE RISK
2023-10-26 CVE-2023-46754 Incorrect Authorization vulnerability in Obl.Ong Admin 1.0.0/1.1.0/1.1.1
The admin panel for Obl.ong before 1.1.2 allows authorization bypass because the email OTP feature accepts arbitrary numerical values.
network
low complexity
obl-ong CWE-863
5.3
5.3