Shilpisoft Client_dashboard
5 CVEs affecting Shilpisoft Client_dashboard. Latest disclosed: 2024-10-04. Critical: 1, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-47656 | Critical | 9.8 | 2024-10-04 | This vulnerability exists in Shilpi Client Dashboard due to missing restrictions for incorrect login attempts on its API based login. A remote attacker could e… |
CVE-2024-47655 | High | 8.8 | 2024-10-04 | This vulnerability exists in the Shilpi Client Dashboard due to improper validation of files being uploaded other than the specified extension. An authenticate… |
CVE-2024-47652 | High | 8.1 | 2024-10-04 | This vulnerability exists in Shilpi Client Dashboard due to implementation of inadequate authentication mechanism in the login module wherein access to any use… |
CVE-2024-47654 | High | 7.5 | 2024-10-04 | This vulnerability exists in Shilpi Client Dashboard due to lack of rate limiting and Captcha protection for OTP requests in certain API endpoint. An unauthent… |
CVE-2024-47653 | Medium | 6.5 | 2024-10-04 | This vulnerability exists in Shilpi Client Dashboard due to lack of authorization for modification and cancellation requests through certain API endpoints. An… |