← back
CVE-2023-1769

SourceCodester Grade Point Average GPA Calculator index.php information disclosure

CVSS 4.3 MEDIUMEPSS 0.6%CWE-200
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.3EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
31 Mar 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability, which was classified as problematic, was found in SourceCodester Grade Point Average GPA Calculator 1.0. Affected is an unknown function of the file index.php. The manipulation of the argument page with the input php://filter/read=convert.base64-encode/resource=grade_table leads to information disclosure. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-224670 is the identifier assigned to this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected products
SourceCodester · Grade Point Average GPA Calculator

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/Pe4cefulSnow/CVE-Advisory/blob/main/README.mdhttps://vuldb.com/?ctiid.224670https://vuldb.com/?id.224670