aEnrich Technology a+HRD's functionality for front-end...
Moderate severity
Unreviewed
Published
Apr 15, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Apr 15, 2024
Published to the GitHub Advisory Database
Apr 15, 2024
aEnrich Technology a+HRD's functionality for front-end retrieval of system configuration values lacks proper restrictions on a specific parameter, allowing attackers to modify this parameter to access certain sensitive system configuration values.
References