CVE-2017-20081

Published: Jun 21, 2022Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

A vulnerability, which was classified as critical, was found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/reports.php. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Affected (1)

Products: Hindu Matrimonial Script Project: Hindu Matrimonial Script

Hindu Matrimonial Script Project

1 product

Hindu Matrimonial Script

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hindu Matrimonial Script Project Hindu Matrimonial Script	All versions

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (4)

https://vuldb.com/?id.95421

Source: cna@vuldb.com

Permissions RequiredThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: cna@vuldb.com

ExploitThird Party AdvisoryVDB Entry

https://vuldb.com/?id.95421

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/41044/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.