← voltar
CVE-2022-4944

kalcaddle KodExplorer cross-site request forgery

CVSS 4.3 MEDIUMEPSS 2.7%CWE-352
A vulnerability, which was classified as problematic, has been found in kalcaddle KodExplorer up to 4.49. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 4.50 is able to address this issue. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-227000.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Produtos afetados
kalcaddle · KodExplorer
PoCs públicas encontradas3
githubgithub.com/brosck/CVE-2022-49442cve_referencewww.mediafire.com/file/709i2vxybergtg7/poc.zip/filenão verificadoexploitdbwww.exploit-db.com/exploits/51388não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/kalcaddle/KodExplorer/issues/512https://github.com/kalcaddle/KodExplorer/releases/tag/4.50https://vuldb.com/?ctiid.227000https://vuldb.com/?id.227000https://www.mediafire.com/file/709i2vxybergtg7/poc.zip/file