CVE-2017-20072

Published: Jun 21, 2022Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

A vulnerability, which was classified as critical, was found in Hindu Matrimonial Script. Affected is an unknown function of the file /admin/generalsettings.php. The manipulation leads to improper privilege management. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Affected (1)

Products: Hindu Matrimonial Script Project: Hindu Matrimonial Script

Hindu Matrimonial Script Project

1 product

Hindu Matrimonial Script

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hindu Matrimonial Script Project Hindu Matrimonial Script	All versions

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (4)

https://vuldb.com/?id.95412

Source: cna@vuldb.com

Third Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: cna@vuldb.com

ExploitThird Party AdvisoryVDB Entry

https://vuldb.com/?id.95412

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.