← volver
CVE-2023-1858

SourceCodester Earnings and Expense Tracker App index.php information disclosure

CVSS 4.3 MEDIUMEPSS 0.6%CWE-200
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 4.3EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
05 abr 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A vulnerability was found in SourceCodester Earnings and Expense Tracker App 1.0. It has been classified as problematic. This affects an unknown part of the file index.php. The manipulation of the argument page leads to information disclosure. It is possible to initiate the attack remotely. The identifier VDB-224997 was assigned to this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Productos afectados
SourceCodester · Earnings and Expense Tracker App

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://vuldb.com/?ctiid.224997https://vuldb.com/?id.224997