code-projects Hostel Management System
0 remedies
cpe:2.3:a:hostel_management_system_project:hostel_management_system:*:*:*:*:*:*:*
0 remedies
Code-Projects Hostel Management System Improper Authentication Vulnerability
Vulnerability
A logical flaw allowing improper authentication has been identified in Code-Projects Hostel Management System version 1.0. The vulnerability resides in the Login component, specifically within the hostel_manage.exe file. This issue arises because the pass() function does not properly check return values, enabling attackers to access the backend by incorrectly entering usernames and passwords three times. The vulnerability can be exploited locally, without any login or authorization requirements.
Impact
Exploitation of this vulnerability can lead to unauthorized access to the backend system.
Reproduction
To reproduce this vulnerability, enter incorrect usernames and passwords three times. The lack of proper return value checking in the pass() function will allow access to the backend, bypassing authentication requirements.
Added: Aug 14, 2025, 3:46 PM
Updated: Aug 14, 2025, 3:46 PM
Vulnerability Rating
Custom Algorithm
spread
0.3impact
5.0exploitability
6.2remediation
0.0relevance
0.3threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.