Security Advisory

CVE-2023-2544

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-03 13:03:13

Last updated 2024-09-19 19:50:13

Assigner INCIBE

State PUBLISHED

Description

Authorization bypass vulnerability in UPV PEIX, affecting the component "pdf_curri_new.php". Through a POST request, an authenticated user could change the ID parameter to retrieve all the stored information of other registered users.

← Browse all CVEs View on cve.org ↗