Employee Task Management System 1.0 Privilege Escalation

Feb. 24, 2023, 7:45 p.m. |

Employee Task Management System version 1.0 suffers from a privilege escalation vulnerability due to a broken access control where a lower privileged user's cookie can be leveraged to takeover an administrative account.

access access control account broken access control control cookie employee escalation management privilege privileged privileged user privilege escalation system takeover task version version 1 vulnerability

Visit resource

More from packetstormsecurity.com / Packet Storm

Debian Security Advisory 5665-1 1 day, 12 hours ago | packetstormsecurity.com

advisory debian debian linux security engine +7

Debian Security Advisory 5664-1 1 day, 12 hours ago | packetstormsecurity.com

advisory attackers can clients +20

Elber Wayber Analog/Digital Audio STL 4.00 Insecure Direct Object Reference 1 day, 12 hours ago | packetstormsecurity.com

audio client client-side configuration +11

Elber Wayber Analog/Digital Audio STL 4.00 Authentication Bypass 1 day, 13 hours ago | packetstormsecurity.com

access attackers audio authentication +15

Elber ESE DVB-S/S2 Satellite Receiver 1.5.x Insecure Direct Object Reference 1 day, 13 hours ago | packetstormsecurity.com

client client-side configuration device +12

Elber ESE DVB-S/S2 Satellite Receiver 1.5.x Authentication Bypass 1 day, 13 hours ago | packetstormsecurity.com

access attackers authentication authentication bypass +16

Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link Insecure Direct Object Reference 1 day, 13 hours ago | packetstormsecurity.com

client client-side configuration device +10

Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link Authentication Bypass 1 day, 13 hours ago | packetstormsecurity.com

access attackers authentication authentication bypass +14

Elber Cleber/3 Broadcast Multi-Purpose Platform 1.0.0 Insecure Direct Object Reference 1 day, 13 hours ago | packetstormsecurity.com

1.0.0 broadcast client client-side +14

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Junior Cybersecurity Triage Analyst

@ Peraton | Linthicum, MD, United States

View on infosec-jobs.com

Associate Director, Operations Compliance and Investigations Management

@ Legend Biotech | Raritan, New Jersey, United States

View on infosec-jobs.com

Analyst, Cyber Operations Engineer

@ BlackRock | SN6-Singapore - 20 Anson Road

View on infosec-jobs.com

Working Student/Intern/Thesis: Hardware based Cybersecurity Training (m/f/d)

@ AVL | Regensburg, DE

View on infosec-jobs.com

View more jobs

all InfoSec news

Employee Task Management System 1.0 Privilege Escalation

More from packetstormsecurity.com / Packet Storm

Jobs in InfoSec / Cybersecurity

SOC 2 Manager, Audit and Certification

Information Security Engineers

Junior Cybersecurity Triage Analyst

Associate Director, Operations Compliance and Investigations Management

Analyst, Cyber Operations Engineer

Working Student/Intern/Thesis: Hardware based Cybersecurity Training (m/f/d)