PT-2023-32602 · Csz Cms · Csz Cms

Testvul

Publicado

2023-11-27

Atualizado

2024-08-29

CVE-2023-6302

CVSS v3.1

7.2

Alta

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions CSZCMS version 1.3.0

Description A critical issue was found in the File Manager Page component, specifically in the viewstemplates file, leading to permission issues. The attack can be launched remotely. The issue has been publicly disclosed.

Recommendations For CSZCMS version 1.3.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Incorrect Default Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-276CWE-275

Identificadores relacionados

CVE-2023-6302

Produtos afetados

Csz Cms

PT-2023-32602 · Csz Cms · Csz Cms

CVE-2023-6302

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6