← voltar
CVE-2026-10243

code-projects Smart Parking System Admin Endpoint missing authentication

CVSS 6.9 MEDIUMEPSS 0.6%CWE-287CWE-306
A security vulnerability has been detected in code-projects Smart Parking System 1.0. Affected is an unknown function of the component Admin Endpoint. Such manipulation leads to missing authentication. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. Multiple endpoints are affected.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Produtos afetados
code-projects · Smart Parking System
PoCs públicas encontradas2
githubgithub.com/Xmyronn/CVE-2026-10243-AUTH0cve_referencegithub.com/Xmyronn/smart-parking-system-broken-access.gitnão verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://code-projects.org/https://github.com/Xmyronn/smart-parking-system-broken-access.githttps://vuldb.com/cve/CVE-2026-10243https://vuldb.com/submit/823871https://vuldb.com/vuln/367521https://vuldb.com/vuln/367521/cti