CVE-2023-2544

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/10/2023
Last modified:
05/10/2023

Description

Authorization bypass vulnerability in UPV PEIX, affecting the component "pdf_curri_new.php". Through a POST request, an authenticated user could change the ID parameter to retrieve all the stored information of other registered users.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:upv:peix:*:*:*:*:*:*:*:*