Bettershop LaikeTui POST Request index.php?module=api&action=user&m=upload ebisanyizo ebyongerwako

CVSS Obubonero bwa Meta TempEkikadde ky’omuwendo gw’okukozesa obunafu obuliko kati (≈)CTI Ennyanja y'okukwata ku nsonga
7.4$0-$5k0.18

Okusumululaamakuru

Waliwo obulabe obwategekeddwa nga kizibu obuzuliddwa mu Bettershop LaikeTui. Obulabe buli ku omugaso ogutamanyiddwa ku fayiro index.php?module=api&action=user&m=upload ku kitundu POST Request Handler. Okukozesa kivirako ebisanyizo ebyongerwako. Obunafu buno buzibwa nga CVE-2023-4559. Kisoboka okutandika okukola attack okuva wala. Wabula, tewali kikozesebwa kiriwo. Ekikozesebwa kino kisindika rolling release okutuusa obuweereza obutayimirira. Noolwekyo, tewali makulu ga version ku bitundu ebyakosebwa oba ebyateekebwako enkyukakyuka agaliwo. If you want to get best quality of vulnerability data, you may have to visit VulDB.

Ebirimuamakuru

Waliwo obulabe obwategekeddwa nga kizibu obuzuliddwa mu Bettershop LaikeTui. Obulabe buli ku omugaso ogutamanyiddwa ku fayiro index.php?module=api&action=user&m=upload ku kitundu POST Request Handler. Okukozesa kivirako ebisanyizo ebyongerwako. Okukozesa CWE okulaga ekizibu kireetera CWE-434. Obunafu buno bwateekebwawo ku 27/08/2023.

Obunafu buno buzibwa nga CVE-2023-4559. Kisoboka okutandika okukola attack okuva wala. Obulambulukufu bw'eby'ekikugu buliwo. Obukadde bw'ensobi eno buli wansi w'ekigero ekisookerwako. Wabula, tewali kikozesebwa kiriwo. Mu kiseera kino, omutengo ogw’akaseera ku kikozesebwa kiyinza okuba nga giri mu USD $0-$5k mu kiseera kino.

Kitegekeddwa nga tekitegedde. Ng’era 0-day, omuwendo ogusabibwa mu kifo ky’obutali mu mateeka gwali nga wa ddala $0-$5k.

Ekikozesebwa kino kisindika rolling release okutuusa obuweereza obutayimirira. Noolwekyo, tewali makulu ga version ku bitundu ebyakosebwa oba ebyateekebwako enkyukakyuka agaliwo.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Ekitunduamakuru

Omukola

Erinnya

CPE 2.3amakuru

CPE 2.2amakuru

CVSSv4amakuru

VulDB Ekikunta: 🔍
VulDB Reliability: 🔍

CVSSv3amakuru

VulDB Obubonero Obusookerwako Obw'enkizo: 7.5
VulDB Obubonero bwa Meta Temp: 7.4

VulDB Obubonero Obusookerwako: 6.3
VulDB Obubonero bw’akaseera: 6.1
VulDB Ekikunta: 🔍
VulDB Reliability: 🔍

NVD Obubonero Obusookerwako: 9.8
NVD Ekikunta: 🔍

CNA Obubonero Obusookerwako: 6.3
CNA Ekikunta (VulDB): 🔍

CVSSv2amakuru

AVACAuCIA
💳💳💳💳💳💳
💳💳💳💳💳💳
💳💳💳💳💳💳
EkikozesebwaObuzibu obungiOkukakasa obutuufu bw'omuntuObukakafuObutebenkevuOkusobola okufuna (Obusobozi obw'okufuna)
okuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbula
okuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbula
okuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbula

VulDB Obubonero Obusookerwako: 🔍
VulDB Obubonero bw’akaseera: 🔍
VulDB Reliability: 🔍

NVD Obubonero Obusookerwako: 🔍

Okukozesa obunafuamakuru

Ekibiina: Ebisanyizo ebyongerwako
CWE: CWE-434 / CWE-284 / CWE-266
CAPEC: 🔍
ATT&CK: 🔍

Obulamu obw’omubiri: Nedda
Wansi wano: Nedda
Waliwo okuva wala: Wee

Okusobola okufuna (Obusobozi obw'okufuna): 🔍
Embeera: Tekitegedde

EPSS Score: 🔍
EPSS Percentile: 🔍

Okukulaakulana kw'ebisale: 🔍
Okubala okw’ensimbi okw’akatono okuva mu kiseera kino: 🔍

0-Dayokuyimbulaokuyimbulaokuyimbulaokuyimbula
Leerookuyimbulaokuyimbulaokuyimbulaokuyimbula

Amagezi ku bulabeamakuru

Okukwata ku: 🔍
Abakola abali mu kikolwa: 🔍
Ebibiina bya APT ebikola kaakano: 🔍

Ebyokukwata ku kwekuumiraamakuru

Okukakasa: Tewali kikolebwa kimanyiddwa
Embeera: 🔍

Ekiseera kya 0-Day: 🔍

Ekiseera ekyayitaamakuru

27/08/2023 🔍
27/08/2023 +0 ennaku 🔍
27/08/2023 +0 ennaku 🔍
20/09/2023 +24 ennaku 🔍

Ebyokutwaliraamakuru

Embeera: Tekitegedde

CVE: CVE-2023-4559 (🔍)
GCVE (CVE): GCVE-0-2023-4559
GCVE (VulDB): GCVE-100-238160

Okuyingizaamakuru

Kikolebwa: 27/08/2023 08:20
Okukozesa enkola empya: 20/09/2023 18:10
Okukyuusa: 27/08/2023 08:20 (37), 20/09/2023 18:02 (2), 20/09/2023 18:10 (28)
Kituufu ddala: 🔍
Owoleza: p1nk
Cache ID: 253:47B:103

Twasirizaamakuru

Kikkiriziddwa

  • Twasiriza #198895: The laiketui program has a remote code execution vulnerability (kuva p1nk)

Okukubaganya ebirowoozo

Tewali biragiddwaako kati. Enimi: lg + en.

Nsaba yingira mu akaawunti yo osobole okwogera.

DdaabayoOkusaba Kw'ebintu ByonnaGenda mu maaso

Do you know our Splunk app?

Download it now for free!