Ihb Eg

ihb-eg

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Fn2web

fn2web

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-30760 1Ihb Eg 1Fn2web Nov 21, 2024 Jun 9, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An Insecure Direct Object Reference (IDOR) issue in fn2Web in ihb eG FlexNow before 2.04.09.016 allows remote authenticated attackers to obtain sensitive student information (final grades, study courses, degrees) by chan...Show more An Insecure Direct Object Reference (IDOR) issue in fn2Web in ihb eG FlexNow before 2.04.09.016 allows remote authenticated attackers to obtain sensitive student information (final grades, study courses, degrees) by changing the student ID parameter in the HTTP POST request to the FrontControllerSS endpoint.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-30760

1Ihb Eg

1Fn2web

Nov 21, 2024

Jun 9, 2022

N/A· v4

4.3 MEDIUM· v3

4.0 MEDIUM· v2

An Insecure Direct Object Reference (IDOR) issue in fn2Web in ihb eG FlexNow before 2.04.09.016 allows remote authenticated attackers to obtain sensitive student information (final grades, study courses, degrees) by chan...Show more