← back
CVE-2023-1858

SourceCodester Earnings and Expense Tracker App index.php information disclosure

CVSS 4.3 MEDIUMEPSS 0.6%CWE-200
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.3EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
05 Apr 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability was found in SourceCodester Earnings and Expense Tracker App 1.0. It has been classified as problematic. This affects an unknown part of the file index.php. The manipulation of the argument page leads to information disclosure. It is possible to initiate the attack remotely. The identifier VDB-224997 was assigned to this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected products
SourceCodester · Earnings and Expense Tracker App

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://vuldb.com/?ctiid.224997https://vuldb.com/?id.224997