CVE-2023-36518
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Dec 13, 2024
CWE ID 862
Summary
CVE-2023-36518 is a vulnerability affecting the Hugh Lashbrooke Post Hit Counter software. It involves a missing authorization issue where access control security levels are not properly configured, leading to the potential for exploitation. This weakness is present in versions 1.3.2 and below, allowing unauthorized users to gain access to features or data they should not be able to reach. The lack of adequate authorization checks poses a significant risk to users of this software.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share