PT-2023-12160 · Unknown · Php-Fusion
Oosman-Rako
·
Publicado
2023-02-17
·
Atualizado
2023-08-08
·
CVE-2021-3172
CVSS v3.1
8.1
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Php-Fusion versions 9.03.90 through 9.10.00
Description
The issue allows authenticated attackers to cause a Distributed Denial of Service via the Polling feature.
Recommendations
For Php-Fusion versions 9.03.90 through 9.09.99, update to version 9.10.00 to resolve the issue.
At the moment, there is no information about additional mitigation measures for this issue.
Exploit
Correção
DoS
Incorrect Permission
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Php-Fusion