CVE-2024-48536 Information

Description

Incorrect access control in eSoft Planner 3.24.08271-USA allow attackers to view all transactions performed by the company via supplying a crafted web request.

Reference

https://github.com/esoft-planner-cve/esoft_planner_cve