Dernières vulnérabilités du 25 Juin 2023

Dernières vulnérabilités du 25 Juin 2023
{{titre}}

Dernière mise à jour efféctuée le 25/06/2023 à 22:28:27

(0) Vulnérabilité(s) CRITICAL [9.0, 10.0]

(0) Vulnérabilité(s) HIGH [7.0, 8.9]

(1) Vulnérabilité(s) MEDIUM [4.0, 6.9]

Vulnérabilité ID : CVE-2023-3396

Première publication le : 25-06-2023 19:15:09
Dernière modification le : 25-06-2023 19:15:09

Description :
A vulnerability was found in Campcodes Retro Cellphone Online Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/index.php. The manipulation of the argument username/password leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-232351.

CVE ID : CVE-2023-3396
Source : cna@vuldb.com
Score CVSS : 6.3

Références :
https://github.com/bao22033/bao/blob/main/Retro%20Cellphone%20Online%20Store%20-%20vlun%201.pdf | source : cna@vuldb.com
https://vuldb.com/?ctiid.232351 | source : cna@vuldb.com
https://vuldb.com/?id.232351 | source : cna@vuldb.com

Vulnérabilité : CWE-89


(0) Vulnérabilité(s) LOW [0.1, 3.9]

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.