Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Online Pizza Ordering System Password Change improper authentication
Vulnerability Description
A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0. It has been classified as critical. This affects an unknown part of the file admin/ajax.php?action=save_user of the component Password Change Handler. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The identifier VDB-223305 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Vulnerability Type
认证机制不恰当
Vulnerability Title
Online Pizza Ordering System 授权问题漏洞
Vulnerability Description
Online Pizza Ordering System是Carlo Montero个人开发者的一个在线比萨订购系统。 SourceCodester Online Pizza Ordering System 1.0版本存在授权问题漏洞,该漏洞源于组件Password Change Handler中的 admin/ajax.php?action=save_user存在安全问题, 导致不正确的身份验证。
CVSS Information
N/A
Vulnerability Type
N/A