Filtered by vendor Python Book Subscriptions
Filtered by product Python Book Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-50650 1 Python Book 1 Python Book 2024-12-03 7.5 High
python_book V1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter.
CVE-2024-50649 1 Python Book 1 Python Book 2024-12-03 9.8 Critical
The user avatar upload function in python_book V1.0 has an arbitrary file upload vulnerability.