Improper Access Control in jshERP V3.3 allows unauthorized access to sensitive information via the doFilter function.

Improper Access Control in jshERP V3.3 allows unauthorized access to sensitive information via the doFilter function.

CVE-2023-48894 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Incorrect Access Control vulnerability in jshERP V3.3 allows attackers to obtain sensitive information via the doFilter function.

Learn more about our Web Application Penetration Testing UK.