Lucene search

CVE-2023-3287 A BOLA vulnerability in POST /admins in EasyAppointments < 1.5.0

🗓️ 09 Jul 2024 10:37:17Reported by palo_altoType

A BOLA vulnerability EasyAppointments POST /admins privilege escalatio

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2023-3287	9 Jul 202411:15	–	cve
NVD	CVE-2023-3287	9 Jul 202411:15	–	nvd
OSV	CVE-2023-3287	9 Jul 202411:15	–	osv
Vulnrichment	CVE-2023-3287 A BOLA vulnerability in POST /admins in EasyAppointments < 1.5.0	9 Jul 202410:17	–	vulnrichment
Veracode	Authorization Bypass	12 Jul 202405:00	–	veracode
Palo Alto Networks	PAN-OS: XML API Keys Revoked by Read-Only PAN-OS Administrator	13 Dec 202317:00	–	paloalto
Tenable Nessus	Palo Alto Networks PAN-OS 9.0.x < 9.0.17-h4 / 9.1.x < 9.1.17 / 10.1.x < 10.1.11 / 10.2.x < 10.2.5 / 11.0.x < 11.0.2 Vulnerability	29 Apr 202400:00	–	nessus

[
  {
    "collectionURL": "https://github.com/alextselegidis/easyappointments",
    "defaultStatus": "unaffected",
    "packageName": "alextselegidis/easyappointments",
    "product": "easyappointments",
    "versions": [
      {
        "lessThan": "1.5.0",
        "status": "affected",
        "version": "*",
        "versionType": "git"
      }
    ]
  }
]

Source	Link
github	www.github.com/alextselegidis/easyappointments

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Jul 2024 10:17Current

CVSS39.9

EPSS0.0005

CWE-639

cve-2023-3287 easyappointments bola privilege escalation