Authentication Bypass Vulnerability in IDAttend's IDWeb Application 3.1.052 and Earlier

Authentication Bypass Vulnerability in IDAttend's IDWeb Application 3.1.052 and Earlier

CVE-2023-26573 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Missing authentication in the SetDB method in IDAttend’s IDWeb application 3.1.052 and earlier allows denial of service or theft of database login credentials.

Learn more about our Web App Pen Testing.