exploitDog

CVE-2023-27091

Опубликовано: 04 апр. 2023

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

An unauthorized access issue found in XiaoBingby TeaCMS 2.3.3 allows attackers to escalate privileges via the id and keywords parameter(s).

Ссылки

https://gitee.com/xiaobingby/TeaCMS/issues/I6GDRU
Exploit
Issue Tracking
Third Party Advisory
https://gitee.com/xiaobingby/TeaCMS/issues/I6SXAF
Exploit
Issue Tracking
Third Party Advisory
https://gitee.com/xiaobingby/TeaCMS/issues/I6GDRU
Exploit
Issue Tracking
Third Party Advisory
https://gitee.com/xiaobingby/TeaCMS/issues/I6SXAF
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:teacms_project:teacms:2.3.3:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00077

Низкий

7.2 High

CVSS3

Дефекты

CWE-287

Связанные уязвимости

GHSA-9875-8h62-hq8g

CVSS3: 7.2

github

почти 3 года назад

An unauthorized access issue found in XiaoBingby TeaCMS 2.3.3 allows attackers to escalate privileges via the id and keywords parameter(s).

EPSS

Процентиль: 23%

0.00077

Низкий

7.2 High

CVSS3

Дефекты

CWE-287