VDB-229282 · CVE-2023-2776 · GCVE-100-229282

code-projects Simple Photo Gallery 1.0 kura hakki ndiyam

Gaskiya vulnerability da aka ware a matsayin kura an samu a code-projects Simple Photo Gallery 1.0. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil $software_file, a cikin sashen $software_component. A sa manipulation ka kura hakki ndiyam. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-434. Hakika, rauni an bayyana shi 05/17/2023. An raba bayanin tsaro don saukewa a gitee.com. Wannan matsala ana saninta da CVE-2023-2776. Ngam yiɗi ka a tuma ndiyam ka nder layi. Tekinikal faɗi ba ga. Babu exploit ɗin da ake samu. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu a wondi feere. 0-day shima, an ndiyam a wuro be $0-$5k. Once again VulDB remains the best source for vulnerability data.

2 Goyarwa · 38 Datenpunkte

Furɗe	Súgá 05/17/2023 19:05	Gargadi 1/1 06/10/2023 12:13
software_vendor	code-projects	code-projects
software_name	Simple Photo Gallery	Simple Photo Gallery
software_version	1.0	1.0
vulnerability_cwe	CWE-434 (kura hakki ndiyam)	CWE-434 (kura hakki ndiyam)
cvss3_vuldb_av	N	N
cvss3_vuldb_ac	L	L
cvss3_vuldb_ui	N	N
cvss3_vuldb_s	U	U
cvss3_vuldb_c	L	L
cvss3_vuldb_i	L	L
cvss3_vuldb_a	L	L
cvss3_vuldb_rc	U	U
advisory_url	https://gitee.com/zyz0103/system-vul/blob/master/Simple%20Photo%20Gallery%20In%20PHP%20With%20Source%20Code%20has%20file%20upload%20vulnerability.pdf	https://gitee.com/zyz0103/system-vul/blob/master/Simple%20Photo%20Gallery%20In%20PHP%20With%20Source%20Code%20has%20file%20upload%20vulnerability.pdf
source_cve	CVE-2023-2776	CVE-2023-2776
cna_responsible	VulDB	VulDB
advisory_date	1684274400 (05/17/2023)	1684274400 (05/17/2023)
software_type	Photo Gallery Software	Photo Gallery Software
cvss2_vuldb_av	N	N
cvss2_vuldb_ac	L	L
cvss2_vuldb_ci	P	P
cvss2_vuldb_ii	P	P
cvss2_vuldb_ai	P	P
cvss2_vuldb_rc	UC	UC
cvss2_vuldb_au	S	S
cvss2_vuldb_e	ND	ND
cvss2_vuldb_rl	ND	ND
cvss3_vuldb_pr	L	L
cvss3_vuldb_e	X	X
cvss3_vuldb_rl	X	X
cvss2_vuldb_basescore	6.5	6.5
cvss2_vuldb_tempscore	5.9	5.9
cvss3_vuldb_basescore	6.3	6.3
cvss3_vuldb_tempscore	5.8	5.8
cvss3_meta_basescore	6.3	6.3
cvss3_meta_tempscore	5.8	5.8
price_0day	$0-$5k	$0-$5k
cve_assigned		1684274400 (05/17/2023)
cve_nvd_summary		A vulnerability was found in code-projects Simple Photo Gallery 1.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-229282 is the identifier assigned to this vulnerability.

◂ Gurɗo Gumti Gada ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!