An issue in Hangzhou Xiongwei Technology Development Co., Ltd. Restaurant Digital Comprehensive Management platform v1 allows an attacker to bypass authentication and perform arbitrary password resets.
References
Link | Resource |
---|---|
https://idssgmcc.github.io/aran.github.io/2.html |
Configurations
No configuration.
History
01 Aug 2024, 15:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CWE | CWE-620 |
29 Jul 2024, 14:12
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
26 Jul 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-07-26 17:15
Updated : 2024-08-01 15:35
NVD link : CVE-2024-26520
Mitre link : CVE-2024-26520
CVE.ORG link : CVE-2024-26520
JSON object : View
Products Affected
No product.
CWE
CWE-620
Unverified Password Change