2 matches found
CVE-2023-33517
carRental 1.0 is vulnerable to Incorrect Access Control Arbitrary File Read on the Back-end System...
CVE-2023-33517
CarRental 1.0 is affected by CVE-2023-33517: an Incorrect Access Control flaw allowing an Arbitrary File Read on the back-end. Root cause is insufficient access-control checks that enable unauthorized access to internal files, yielding Confidentiality impact (C:H) per CVSS 3.1 (base 7.5, HIGH). E...