A vulnerability, which was classified as critical, was found in Thecosy IceCMS 2.0.1. Affected is an unknown function of the file /article/DelectArticleById/ of the component Article Handler. The manipulation leads to permission issues. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-247890 is the identifier assigned to this vulnerability.
References
Link | Resource |
---|---|
http://39.106.130.187/jwt/wen/1.html | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.247890 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.247890 | Third Party Advisory |
http://39.106.130.187/jwt/wen/1.html | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.247890 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.247890 | Third Party Advisory |
Configurations
History
21 Nov 2024, 08:44
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.5
v3 : 5.4 |
References | () http://39.106.130.187/jwt/wen/1.html - Exploit, Third Party Advisory | |
References | () https://vuldb.com/?ctiid.247890 - Permissions Required, Third Party Advisory | |
References | () https://vuldb.com/?id.247890 - Third Party Advisory |
16 Dec 2023, 01:47
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-13 16:15
Updated : 2024-11-21 08:44
NVD link : CVE-2023-6762
Mitre link : CVE-2023-6762
CVE.ORG link : CVE-2023-6762
JSON object : View
Products Affected
thecosy
- icecms
CWE
CWE-275
Permission Issues