CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
67.9%
JB Inquiry form contains an exposure of private personal information to an unauthorized actor vulnerability, which may allow a remote unauthenticated attacker to obtain information entered from forms created using the affected product. The affected products and versions are as follows: JB Inquiry form versions 0.6.1 and 0.6.0, JB Inquiry form versions 0.5.2, 0.5.1 and 0.5.0, and JB Inquiry form version 0.40.
Vendor | Product | Version | CPE |
---|---|---|---|
jubei | jb_inquiry_form | 0.5.0 | cpe:2.3:a:jubei:jb_inquiry_form:0.5.0:*:*:*:*:*:*:* |
jubei | jb_inquiry_form | 0.5.1 | cpe:2.3:a:jubei:jb_inquiry_form:0.5.1:*:*:*:*:*:*:* |
jubei | jb_inquiry_form | 0.5.2 | cpe:2.3:a:jubei:jb_inquiry_form:0.5.2:*:*:*:*:*:*:* |
jubei | jb_inquiry_form | 0.6.0 | cpe:2.3:a:jubei:jb_inquiry_form:0.6.0:*:*:*:*:*:*:* |
jubei | jb_inquiry_form | 0.6.1 | cpe:2.3:a:jubei:jb_inquiry_form:0.6.1:*:*:*:*:*:*:* |
jubei | jb_inquiry_form | 0.40 | cpe:2.3:a:jubei:jb_inquiry_form:0.40:*:*:*:*:*:*:* |
[
{
"vendor": "Jubei Inc.",
"product": "JB Inquiry form",
"versions": [
{
"version": "versions 0.6.1 and 0.6.0, versions 0.5.2, 0.5.1, and 0.5.0, and version 0.40",
"status": "affected"
}
]
}
]