CVE-2024-42774

An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to delete valid hotel room entries in the administrator section.
Configurations

No configuration.

History

23 Aug 2024, 16:18

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad de control de acceso incorrecto en /admin/delete_room.php en Kashipara Hotel Management System v1.0, que permite a un atacante no autenticado eliminar entradas válidas de habitaciones de hotel en la sección de administrador.

22 Aug 2024, 20:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CWE CWE-269

22 Aug 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-22 17:15

Updated : 2024-08-23 16:18


NVD link : CVE-2024-42774

Mitre link : CVE-2024-42774

CVE.ORG link : CVE-2024-42774


JSON object : View

Products Affected

No product.

CWE
CWE-269

Improper Privilege Management