Lucene search
GoogleOSV:CVE-2023-3493HistoryJun 30, 2023 - 10:15 p.m.
CVE-2023-3493
2023-06-3022:15:10
Google
osv.dev
4
cve-2023-3493
improper neutralization
formula elements
csv file
github
repository
fossbilling
software vulnerability
8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.9%
Improper Neutralization of Formula Elements in a CSV File in GitHub repository fossbilling/fossbilling prior to 0.5.3.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fossbilling | eq | 0.4.3 | |
| fossbilling | eq | 0.2.1 | |
| fossbilling | eq | 0.4.1 | |
| fossbilling | eq | 0.5.1 | |
| fossbilling | eq | 0.4.2 | |
| fossbilling | eq | 0.2.3 | |
| fossbilling | eq | 0.2.9 | |
| fossbilling | eq | 0.2.2 | |
| fossbilling | eq | 0.5.0 | |
| fossbilling | eq | 0.5.2 |
Related
huntr
huntr
CSV Injection while export users
2023-06-30 10:50:12
prion
prion
Input validation
2023-06-30 22:15:00
cvelist
cvelist
cve
cve
CVE-2023-3493
2023-06-30 22:15:10
nvd
nvd
CVE-2023-3493
2023-06-30 22:15:10
8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.9%
Related for OSV:CVE-2023-3493