PT-2023-21182 · Unknown · Jb Inquiry Form

Yuji Tounai

Published

2023-05-10

Updated

2023-05-16

CVE-2023-27510

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions JB Inquiry form versions 0.6.1 through 0.6.0 JB Inquiry form versions 0.5.2 through 0.5.0 JB Inquiry form version 0.40

Description The issue allows a remote unauthenticated attacker to obtain information entered from forms created using the affected product, due to an exposure of private personal information to an unauthorized actor.

Recommendations For JB Inquiry form versions 0.6.1 through 0.6.0, update to a version that fixes this issue. For JB Inquiry form versions 0.5.2 through 0.5.0, update to a version that fixes this issue. For JB Inquiry form version 0.40, update to a version that fixes this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-27510

Affected Products

Jb Inquiry Form

PT-2023-21182 · Unknown · Jb Inquiry Form

CVE-2023-27510

Related Identifiers

Affected Products

References · 4