admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2024/CVE-2024-25270.md
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

19 lines
745 B
Markdown
Raw Permalink Blame History

### [CVE-2024-25270](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25270)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)
### Description
An issue in Mirapolis LMS 4.6.XX allows authenticated users to exploit an Insecure Direct Object Reference (IDOR) vulnerability by manipulating the ID parameter and increment STEP parameter, leading to the exposure of sensitive user data.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/fbkcs/CVE-2024-25270
- https://github.com/nomi-sec/PoC-in-GitHub
Reference in New Issue View Git Blame Copy Permalink