Unrated severityNVD Advisory· Published Jan 3, 2021· Updated Aug 3, 2024
CVE-2021-3005
CVE-2021-3005
Description
MK-AUTH through 19.01 K4.9 allows remote attackers to obtain sensitive information (e.g., a CPF number) via a modified titulo (aka invoice number) value to the central/recibo.php URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- MK-AUTH/MK-AUTHdescription
Patches
Vulnerability mechanics
References
2- mk-auth.com.brmitrex_refsource_MISC
- gist.github.com/alacerda/3b925cb333eb839ae808d6f01642aeb3mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.