Security Advisory

CVE-2024-50647

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-15 00:00:00

Last updated 2024-12-03 16:43:41

Assigner mitre

State PUBLISHED

Description

The python_food ordering system V1.0 has an unauthorized vulnerability that leads to the leakage of sensitive user information. Attackers can access it through https://ip:port/api/myapp/index/user/info?id=1 And modify the ID value to obtain sensitive user information beyond authorization.

← Browse all CVEs View on cve.org ↗