Filtered by vendor Shilpisoft Subscriptions
Filtered by product Net Back Office Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-47657 1 Shilpisoft 1 Net Back Office 2024-10-16 6.5 Medium
This vulnerability exists in the Shilpi Net Back Office due to improper access controls on certain API endpoints. An authenticated remote attacker could exploit this vulnerability by manipulating a parameter dfclientid through API request URLs which could lead to unauthorized access to sensitive information belonging to other users.