CVE-2023-3599

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 10, 2023

Updated: May 17, 2024

CWE ID 190

Summary

CVE-2023-3599 is a critical vulnerability affecting the SourceCodester Best Fee Management System 1.0. The issue lies within the save_user function of the admin_class.php file in the Add User Handler component. The manipulation of this function results in improper access controls, allowing for unauthorized access. This vulnerability can be exploited remotely, and the exploit has been publicly disclosed, increasing the risk of potential attacks. Vulnerability details can be found under VDB-233450.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uEowXO
https://www.cve.org/CVERecord?id=CVE-2023-3599
https://nvd.nist.gov/vuln/detail/CVE-2023-3599

Back to Vulnerability Database

CVE-2023-3599

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations