Lucene search
K

3 matches found

Vulnrichment
Vulnrichment
added 2023/10/31 3:3 p.m.13 views

CVE-2023-46240 CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment

CodeIgniter is a PHP full-stack web framework. Prior to CodeIgniter4 version 4.4.3, if an error or exception occurs, a detailed error report is displayed even if in the production environment. As a result, confidential information may be leaked. Version 4.4.3 contains a patch. As a workaround,...

7.5CVSS6.5AI score0.00621EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/10/31 3:3 p.m.41 views

CVE-2023-46240 CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment

CodeIgniter is a PHP full-stack web framework. Prior to CodeIgniter4 version 4.4.3, if an error or exception occurs, a detailed error report is displayed even if in the production environment. As a result, confidential information may be leaked. Version 4.4.3 contains a patch. As a workaround,...

7.5CVSS7.6AI score0.00621EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2023/10/30 3:18 p.m.55 views

CodeIgniter4 vulnerable to information disclosure when detailed error report is displayed in production environment

Impact If an error or exception occurs in CodeIgniter4 v4.4.2 and earlier, a detailed error report is displayed even if in the production environment. As a result, confidential information may be leaked. Patches Upgrade to v4.4.3 or later. See upgrading guide. Workarounds Replace...

7.5CVSS6.8AI score0.00621EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder