Lucene search
CodeastroComplaint Management System1.0
2 matches found
CVE-2024-56889
Incorrect access control in the endpoint /admin/m_delete.php of CodeAstro Complaint Management System v1.0 allows unauthorized attackers to arbitrarily delete complaints via modification of the id parameter.
7.5CVSS6.9AI score0.00292EPSS
CVE-2024-55507
An issue in CodeAstro Complaint Management System v.1.0 allows a remote attacker to escalate privileges via the delete_e.php component.
9.8CVSS7.2AI score0.00357EPSS