Lucene search
K

4 matches found

Circl
Circl
added 2024/01/12 10:41 p.m.4 views

CVE-2023-49801

creationtimestamp| type| source ---|---|--- 2024-01-12 22:41:47+00:00| seen| https://t.me/ctinow/167570 2024-01-15 13:25:40+00:00| seen| https://t.me/arpsyndicate/2786...

7.5CVSS7.3AI score0.00376EPSS
Exploits0References2
CVE
CVE
added 2024/01/12 9:8 p.m.35 views

CVE-2023-49801

CVE-2023-49801 describes a vulnerability in Lif Auth Server affecting the get_pfp and get_banner routes. The issue arises from missing validation of the files delivered through these URLs, potentially allowing an attacker to access files they should not access. Multiple connected sources confirm ...

7.5CVSS7.4AI score0.00376EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/12 9:8 p.m.8 views

CVE-2023-49801 Lif Auth Server vulnerable to uncontrolled data in path expression

Lif Auth Server is a server for validating logins, managing information, and account recovery for Lif Accounts. The issue relates to the getpfp and getbanner routes on Auth Server. The issue is that there is no check to ensure that the file that Auth Server is receiving through these URLs is...

4.2CVSS6.8AI score0.00376EPSS
Exploits0References2
OSV
OSV
added 2024/01/12 9:8 p.m.25 views

CVE-2023-49801 Lif Auth Server vulnerable to uncontrolled data in path expression

Lif Auth Server is a server for validating logins, managing information, and account recovery for Lif Accounts. The issue relates to the getpfp and getbanner routes on Auth Server. The issue is that there is no check to ensure that the file that Auth Server is receiving through these URLs is...

4.2CVSS7.4AI score0.00376EPSS
Exploits0References4
Rows per page
Query Builder