Vulnerability — CVE-2024-41251

CVE-2024-41251

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-41251
Description:: An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php and /smsa/admin_teacher_register_approval_submit.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view and approve Teacher registration.
Last updated date:: 08/08/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/08/2024
Reference url to background: https://github.com/takekaramey/CVE_Writeup/blob/main/Kashipara/Responsive%20School%20Management%20System%20v3.2.0/Broken%20Access%20Control%20-%20Admin%20Dashboard%20-%20Registered%20Teacher.pdf