PT-2023-26425 · Unknown · Moosocial Moodating
Publicado
2023-07-23
·
Atualizado
2024-05-17
·
CVE-2023-3844
CVSS v3.1
6.1
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
mooSocial mooDating version 1.2
Description
A vulnerability was found in the file /friends of the component URL Handler, leading to cross site scripting. The attack can be launched remotely. The manipulation affects an unknown functionality.
Recommendations
For mooSocial mooDating version 1.2, consider disabling the /friends functionality of the URL Handler component until a patch is available. Restrict access to the /friends file to minimize the risk of exploitation.
Exploit
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Moosocial Moodating