3.8 Low
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
13.3%
froxlor/froxlor is vulnerable to Business Logic Errors. The vulnerability exists in the update
function pf Admins.php
because the admin name is not properly validated for spaces which allows an attacker to save a user name with just spaces/
CPE | Name | Operator | Version |
---|---|---|---|
froxlor/froxlor | le | 2.0.21 | |
froxlor/froxlor | le | 2.0.21 |