exploitDog

CVE-2022-23889

Опубликовано: 28 янв. 2022

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

The comment function in YzmCMS v6.3 was discovered as being able to be operated concurrently, allowing attackers to create an unusually large number of comments.

Ссылки

https://github.com/yzmcms/yzmcms/issues/61
Exploit
Third Party Advisory
https://github.com/yzmcms/yzmcms/issues/61
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:yzmcms:yzmcms:6.3:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00289

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-674

Связанные уязвимости

GHSA-qrcq-hr7g-x7gm

github

около 4 лет назад

The comment function in YzmCMS v6.3 was discovered as being able to be operated concurrently, allowing attackers to create an unusually large number of comments.

EPSS

Процентиль: 52%

0.00289

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-674