Vulnerability CVE-2024-28735


Published: 2024-03-20

Description:
An incorrect access control issue in Unit4 Financials by Coda v.2023Q4 allows a remote attacker to escalate privileges via a crafted script to the change password function.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Financials By Coda Authorization Bypass
Leo Draghi
16.03.2024

 References:
http://financials.com
http://unit4.com
https://packetstormsecurity.com/files/177620/Financials-By-Coda-Authorization-Bypass.html

Copyright 2024, cxsecurity.com

 

Back to Top