CVE-2023-6438

Опубликовано: 30 нояб. 2023

Источник: nvd

CVSS3: 4.3

CVSS3: 5.3

CVSS2: 4

EPSS Низкий

Описание

A vulnerability classified as problematic has been found in Thecosy IceCMS 2.0.1. Affected is an unknown function of the file /WebArticle/articles/ of the component Like Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-246438 is the identifier assigned to this vulnerability.

Ссылки

http://124.71.147.32:8082
Exploit
Third Party Advisory
https://vuldb.com/?ctiid.246438
Third Party Advisory
https://vuldb.com/?id.246438
Third Party Advisory
http://124.71.147.32:8082
Exploit
Third Party Advisory
https://vuldb.com/?ctiid.246438
Third Party Advisory
https://vuldb.com/?id.246438
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:thecosy:icecms:2.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00107

Низкий

4.3 Medium

CVSS3

5.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-837

Связанные уязвимости

GHSA-qwf9-ch8q-fhx3

CVSS3: 4.3

github

около 2 лет назад

A vulnerability classified as problematic has been found in IceCMS 2.0.1. Affected is an unknown function of the file /WebArticle/articles/ of the component Like Handler. The manipulation leads to improper enforcement of a single, unique action. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-246438 is the identifier assigned to this vulnerability.

EPSS

Процентиль: 29%

0.00107

Низкий

4.3 Medium

CVSS3

5.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-837