A vulnerability classified as problematic has been found in PHPGurukul Online Notes Sharing System 1.0. Affected is an unknown function of the file /user/profile.php of the component Contact Information Handler. The manipulation of the argument mobilenumber leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-248742 is the identifier assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/dhabaleshwar/Open-Source-Vulnerabilities/blob/main/notes_parameter_tampering.md | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.248742 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.248742 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-12-22T02:31:04.126Z
Updated: 2023-12-22T02:31:04.126Z
Reserved: 2023-12-21T16:13:22.013Z
Link: CVE-2023-7055
JSON object: View
NVD Information
Status : Modified
Published: 2023-12-22T03:15:09.790
Modified: 2024-05-17T02:34:06.900
Link: CVE-2023-7055
JSON object: View
Redhat Information
No data.