PT-2023-26425 · Unknown · Moosocial Moodating

Published

2023-07-23

Updated

2024-05-17

CVE-2023-3844

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions mooSocial mooDating version 1.2

Description A vulnerability was found in the file /friends of the component URL Handler, leading to cross site scripting. The attack can be launched remotely. The manipulation affects an unknown functionality.

Recommendations For mooSocial mooDating version 1.2, consider disabling the /friends functionality of the URL Handler component until a patch is available. Restrict access to the /friends file to minimize the risk of exploitation.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-3844

Affected Products

Moosocial Moodating

PT-2023-26425 · Unknown · Moosocial Moodating

CVE-2023-3844

Weakness Enumeration

Related Identifiers

Affected Products

References · 7