Lucene search
@huntrdevCVELIST:CVE-2023-1887HistoryApr 05, 2023 - 12:00 a.m.
CVE-2023-1887 Business Logic Errors in thorsten/phpmyfaq
2023-04-0500:00:00
CWE-840
@huntrdev
www.cve.org
cve-2023
business logic errors
github repository
thorsten/phpmyfaq
8.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.2%
Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12.
CNA Affected
[
{
"vendor": "thorsten",
"product": "thorsten/phpmyfaq",
"versions": [
{
"version": "unspecified",
"lessThan": "3.1.12",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2023-1887
2023-04-05 17:15:07
nvd
nvd
CVE-2023-1887
2023-04-05 17:15:07
github
github
thorsten/phpmyfaq vulnerable to business logic errors
2023-04-05 18:30:18
osv
osv
thorsten/phpmyfaq vulnerable to business logic errors
2023-04-05 18:30:18
CVE-2023-1887
2023-04-05 17:15:07
huntr
huntr
User with only "edit" can delete post and somethimes can add post
2023-02-15 00:10:57
veracode
veracode
Business Logic Flaws
2023-04-20 17:38:05
prion
prion
Code injection
2023-04-05 17:15:00
openvas
openvas
phpMyFAQ < 3.1.12 Multiple Vulnerabilities
2023-04-04 00:00:00
8.3 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.2%
Related for CVELIST:CVE-2023-1887