Insecure permissions in 14Finger v1.1 allow attackers to escalate privileges from normal user to Administrator via a crafted POST request.
References
Link | Resource |
---|---|
https://github.com/b1ackc4t/14Finger/issues/12 | Exploit Issue Tracking |
https://github.com/b1ackc4t/14Finger/issues/12 | Exploit Issue Tracking |
Configurations
History
21 Nov 2024, 09:24
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/b1ackc4t/14Finger/issues/12 - Exploit, Issue Tracking |
01 Aug 2024, 13:54
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-278 |
08 Jul 2024, 16:37
Type | Values Removed | Values Added |
---|---|---|
First Time |
B1ackc4t 14finger
B1ackc4t |
|
CWE | NVD-CWE-noinfo | |
Summary |
|
|
CPE | cpe:2.3:a:b1ackc4t:14finger:1.1:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
References | () https://github.com/b1ackc4t/14Finger/issues/12 - Exploit, Issue Tracking |
05 Jul 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-07-05 16:15
Updated : 2024-11-21 09:24
NVD link : CVE-2024-37769
Mitre link : CVE-2024-37769
CVE.ORG link : CVE-2024-37769
JSON object : View
Products Affected
b1ackc4t
- 14finger
CWE