An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music/index.php?page=edit_user in Kashipara Music Management System v1.0. This allows a low privileged attacker to take over the administrator account.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Music_management_system | Lopalopa | 1.0 (including) | 1.0 (including) |