exploitDog

CVE-2023-49394

Опубликовано: 10 янв. 2024

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Zentao versions 4.1.3 and before has a URL redirect vulnerability, which prevents the system from functioning properly.

Ссылки

https://gist.github.com/xue-yao-go/87d088fa3f423bba8098ef22988e4626
Exploit
Third Party Advisory
https://narrow-payment-2cd.notion.site/zentao-4-1-3-is-vulnerable-URL-redirect-b03f8f9f5b4e4cbea819c2961c097d92?pvs=4
Exploit
Third Party Advisory
https://gist.github.com/xue-yao-go/87d088fa3f423bba8098ef22988e4626
Exploit
Third Party Advisory
https://narrow-payment-2cd.notion.site/zentao-4-1-3-is-vulnerable-URL-redirect-b03f8f9f5b4e4cbea819c2961c097d92?pvs=4
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:easycorp:zentao:*:*:*:*:*:*:*:*

Версия до 4.1.3 (включая)

EPSS

Процентиль: 42%

0.00197

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601

CWE-601

Связанные уязвимости

GHSA-85w5-mw69-5h72

CVSS3: 6.1

github

около 2 лет назад

Zentao versions 4.1.3 and before has a URL redirect vulnerability, which prevents the system from functioning properly.

EPSS

Процентиль: 42%

0.00197

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-601

CWE-601