CVE-2024-0350

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. VDB-250118 is the identifier assigned to this vulnerability.
References
Link Resource
https://mega.nz/file/fckFBASJ#lffaC0xY44ri9Ln-7hrUbUtq2GTiE8roiW8guR7QeVE Exploit Third Party Advisory
https://vuldb.com/?ctiid.250118 Permissions Required Third Party Advisory
https://vuldb.com/?id.250118 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:engineers_online_portal_project:engineers_online_portal:1.0:*:*:*:*:*:*:*

History

12 Jan 2024, 14:34

Type Values Removed Values Added
References () https://vuldb.com/?id.250118 - () https://vuldb.com/?id.250118 - Third Party Advisory
References () https://vuldb.com/?ctiid.250118 - () https://vuldb.com/?ctiid.250118 - Permissions Required, Third Party Advisory
References () https://mega.nz/file/fckFBASJ#lffaC0xY44ri9Ln-7hrUbUtq2GTiE8roiW8guR7QeVE - () https://mega.nz/file/fckFBASJ#lffaC0xY44ri9Ln-7hrUbUtq2GTiE8roiW8guR7QeVE - Exploit, Third Party Advisory
First Time Engineers Online Portal Project
Engineers Online Portal Project engineers Online Portal
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5
CPE cpe:2.3:a:engineers_online_portal_project:engineers_online_portal:1.0:*:*:*:*:*:*:*

09 Jan 2024, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-01-09 23:15

Updated : 2024-05-17 02:34


NVD link : CVE-2024-0350

Mitre link : CVE-2024-0350

CVE.ORG link : CVE-2024-0350


JSON object : View

Products Affected

engineers_online_portal_project

  • engineers_online_portal
CWE
CWE-613

Insufficient Session Expiration