VYPR
Unrated severityNVD Advisory· Published Jan 3, 2021· Updated Aug 3, 2024

CVE-2021-3005

CVE-2021-3005

Description

MK-AUTH through 19.01 K4.9 allows remote attackers to obtain sensitive information (e.g., a CPF number) via a modified titulo (aka invoice number) value to the central/recibo.php URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • MK-AUTH/MK-AUTHdescription
  • MK-Auth/MK-Authllm-fuzzy
    Range: <= 19.01 K4.9

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.