← voltar
CVE-2023-1858

SourceCodester Earnings and Expense Tracker App index.php information disclosure

CVSS 4.3 MEDIUMEPSS 0.6%CWE-200
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 4.3EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
05 abr 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A vulnerability was found in SourceCodester Earnings and Expense Tracker App 1.0. It has been classified as problematic. This affects an unknown part of the file index.php. The manipulation of the argument page leads to information disclosure. It is possible to initiate the attack remotely. The identifier VDB-224997 was assigned to this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Produtos afetados
SourceCodester · Earnings and Expense Tracker App

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://vuldb.com/?ctiid.224997https://vuldb.com/?id.224997