2 matches found
CVE-2024-56889
Incorrect access control in the endpoint /admin/mdelete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter...
CVE-2024-56889
CVE-2024-56889 affects CodeAstro Complaint Management System v1.0. The vulnerability is an Incorrect access control on the endpoint /admin/m_delete.php, allowing an unauthorized attacker to arbitrarily delete complaints by modifying the id parameter. The CVSS 3.1 base score is 7.5 (High) with Net...