[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

Campcodes Advanced Online Voting System 1.0 /admin/positions_row.php id sql injektion

Det var en kritisksvag punkt upptäcktes i Campcodes Advanced Online Voting System 1.0. Som påverkar en okänd funktion filen /admin/positions_row.php. Manipulering av argumenten id en okänd ingång leder till en sårbarhet klass sql injektion svag punkt. Den rådgivande finns tillgänglig för nedladdning på github.com. Denna svaga punkt behandlas som CVE-2023-2051. Attacken på nätet kan. Det finns tekniska detaljer känd. Han deklarerade proof-of-concept. Den exploit kan laddas ner från github.com.

2 Ändringar · 43 Datapunkter

FältSkapad
14/04/2023 09:47		Update 1/1
30/04/2023 18:24
software_vendorCampcodesCampcodes
software_nameAdvanced Online Voting SystemAdvanced Online Voting System
software_version1.01.0
software_file/admin/positions_row.php/admin/positions_row.php
software_argumentidid
vulnerability_cweCWE-89 (sql injektion)CWE-89 (sql injektion)
vulnerability_risk22
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_ePP
cvss3_vuldb_rcRR
advisory_urlhttps://github.com/E1CHO/cve_hub/blob/main/Advanced%20Online%20Voting%20System/Advanced%20Online%20Voting%20System%20-%20vuln%205.pdfhttps://github.com/E1CHO/cve_hub/blob/main/Advanced%20Online%20Voting%20System/Advanced%20Online%20Voting%20System%20-%20vuln%205.pdf
exploit_availability11
exploit_publicity11
exploit_urlhttps://github.com/E1CHO/cve_hub/blob/main/Advanced%20Online%20Voting%20System/Advanced%20Online%20Voting%20System%20-%20vuln%205.pdfhttps://github.com/E1CHO/cve_hub/blob/main/Advanced%20Online%20Voting%20System/Advanced%20Online%20Voting%20System%20-%20vuln%205.pdf
source_cveCVE-2023-2051CVE-2023-2051
cna_responsibleVulDBVulDB
advisory_date1681423200 (14/04/2023)1681423200 (14/04/2023)
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_ePOCPOC
cvss2_vuldb_rcURUR
cvss2_vuldb_auSS
cvss2_vuldb_rlNDND
cvss3_vuldb_prLL
cvss3_vuldb_rlXX
cvss2_vuldb_basescore6.56.5
cvss2_vuldb_tempscore5.65.6
cvss3_vuldb_basescore6.36.3
cvss3_vuldb_tempscore5.75.7
cvss3_meta_basescore6.36.3
cvss3_meta_tempscore5.75.7
price_0day$0-$5k$0-$5k
cve_assigned1681423200 (14/04/2023)
cve_nvd_summaryA vulnerability classified as critical has been found in Campcodes Advanced Online Voting System 1.0. Affected is an unknown function of the file /admin/positions_row.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225936.

TidigareÖversiktNästa

Do you want to use VulDB in your project?

Use the official API to access entries easily!