CVE-2024-42798

An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music/index.php?page=edit_user in Kashipara Music Management System v1.0. This allows a low privileged attacker to take over the administrator account. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt