Product:

14finger

(B1ackc4t)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 2
Date Id Summary Products Score Patch Annotated
2024-07-05 CVE-2024-37769 Insecure permissions in 14Finger v1.1 allow attackers to escalate privileges from normal user to Administrator via a crafted POST request. 14finger 8.8
2024-07-05 CVE-2024-37768 14Finger v1.1 was discovered to contain an arbitrary user deletion vulnerability via the component /api/admin/user?id. 14finger 9.1