CVE-2017-20077

Published: Jun 21, 2022Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

A vulnerability was found in Hindu Matrimonial Script. It has been rated as critical. This issue affects some unknown processing of the file /admin/success_story.php. The manipulation leads to improper privilege management. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Affected (1)

Products: Hindu Matrimonial Script Project: Hindu Matrimonial Script

Hindu Matrimonial Script Project

1 product

Hindu Matrimonial Script

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hindu Matrimonial Script Project Hindu Matrimonial Script	All versions

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (4)

https://vuldb.com/?id.95417

Source: cna@vuldb.com

Permissions RequiredThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: cna@vuldb.com

ExploitThird Party AdvisoryVDB Entry

https://vuldb.com/?id.95417

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.