CVE-2017-20078

Published: Jun 21, 2022Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

A vulnerability classified as critical has been found in Hindu Matrimonial Script. Affected is an unknown function of the file /admin/featured.php. The manipulation leads to improper privilege management. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Affected (1)

Products: Hindu Matrimonial Script Project: Hindu Matrimonial Script

Hindu Matrimonial Script Project

1 product

Hindu Matrimonial Script

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hindu Matrimonial Script Project Hindu Matrimonial Script	All versions

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (4)

https://vuldb.com/?id.95418

Source: cna@vuldb.com

Permissions RequiredThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: cna@vuldb.com

ExploitThird Party AdvisoryVDB Entry

https://vuldb.com/?id.95418

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.