4 matches found
CVE-2023-38965
Lost and Found Information System 1.0 allows account takeover via username and password to a /classes/Users.php?f=save URI...
Lost and Found Information System v1.0 - ( IDOR ) leads to Account Take over Exploit
Exploit Title: Lost and Found Information System v1.0 - idor leads to Account Take over Exploit Author: OR4NG.M4N Category : webapps CVE : CVE-2023-38965 Python p0c : import argparse import requests import time parser = argparse.ArgumentParserdescription='Send a POST request to the target server'...
CVE-2023-38965
CVE-2023-38965 affects Lost and Found Information System v1.0. The vulnerability is an insecure direct object reference at the API endpoint /classes/Users.php?f=save, which allows account takeover by supplying a crafted username and password (IDOR). Public references include Exploit-DB and Packet...
Lost And Found Information System 1.0 Insecure Direct Object Reference
Exploit Title: Lost and Found Information System v1.0 - idor leads to Account Take over Date: 2023-12-03 Exploit Author: OR4NG.M4N Category : webapps CVE : CVE-2023-38965 Python p0c : import argparse import requests import time parser = argparse.ArgumentParserdescription='Send a POST request to t...