exploitDog

CVE-2023-28698

Опубликовано: 02 июн. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Wade Graphic Design FANTSY has a vulnerability of insufficient authorization check. An unauthenticated remote user can exploit this vulnerability by modifying URL parameters to gain administrator privileges to perform arbitrary system operation or disrupt service.

Ссылки

https://www.twcert.org.tw/tw/cp-132-7101-f88db-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-7101-f88db-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wddgroup:fantsy:2.1.8:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00399

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-863

Связанные уязвимости

GHSA-w65v-2jvx-6697

CVSS3: 9.8

github

больше 2 лет назад

Wade Graphic Design FANTSY has a vulnerability of insufficient authorization check. An unauthenticated remote user can exploit this vulnerability by modifying URL parameters to gain administrator privileges to perform arbitrary system operation or disrupt service.

EPSS

Процентиль: 60%

0.00399

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-863