What the vulnerability does
01Description
Improper access control in Imagine Cup allows an authorized attacker to elevate privileges over a network.
CVE-2024-38204
HIGH
CVE-2024-38204: Imagine Cup site Information Disclosure Vulnerability
CVSS base score
7.5/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
Key dates
02Disclosure timeline
October 15, 2024
CVE published
June 9, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-36404 Windows Kernel Information Disclosure Vulnerability
CVE-2022-21816
CVE-2021-24146 Modern Events Calendar Lite < 5.16.5 - Unauthenticated Events Export
CVE-2014-2365 Advantech WebAccess Improper Access Control
CVE-2026-48899 Joomla! Core - [20260515] - Incorrect Access Control in sample data plugins
