CVE-2015-10033
LOWmerlinsboard < 2015-03-19 - Improper Authorization in Grade Handler
Title source: llmDescription
A vulnerability, which was classified as problematic, was found in jvvlee MerlinsBoard. This affects an unknown part of the component Grade Handler. The manipulation leads to improper authorization. The identifier of the patch is 134f5481e2914b7f096cd92a22b1e6bcb8e6dfe5. It is recommended to apply a patch to fix this issue. The identifier VDB-217713 was assigned to this vulnerability.
References (3)
Core 3
Core References
Third Party Advisory vdb-entry
technical-description
https://vuldb.com/?id.217713
Third Party Advisory signature
permissions-required
https://vuldb.com/?ctiid.217713
Patch, Third Party Advisory patch
https://github.com/jvvlee/MerlinsBoard/commit/134f5481e2914b7f096cd92a22b1e6bcb8e6dfe5
Scores
CVSS v3
3.5
EPSS
0.0073
EPSS Percentile
49.5%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L
Details
CWE
CWE-285
CWE-863
Status
published
Products (1)
merlinsboard_project/merlinsboard
< 2015-03-19
Published
Jan 09, 2023
Tracked Since
Feb 18, 2026