Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Computer Laboratory Management System save_users improper authorization
Vulnerability Description
A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. Affected by this issue is the function save_users of the file /classes/Users.php?f=save. The manipulation of the argument id leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-258914 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Vulnerability Type
授权机制不恰当
Vulnerability Title
SourceCodester Computer Laboratory Management System 授权问题漏洞
Vulnerability Description
Computer Laboratory Management System是一个计算机实验室管理系统。 SourceCodester Computer Laboratory Management System 1.0版本存在授权问题漏洞,该漏洞源于/classes/Users.php 中的 save_users 函数存在安全问题,通过参数 id 导致不正确的授权。
CVSS Information
N/A
Vulnerability Type
N/A