CVE-2023-3605

Published: Jul 10, 2023Modified: Nov 21, 2024

9.1

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Exploitability: 3.9 / Impact: 5.2

Source: NVD

Description

A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Registration Page. The manipulation leads to improper restriction of excessive authentication attempts. The attack can be launched remotely. The associated identifier of this vulnerability is VDB-233467.

Affected (1)

Products: Phpgurukul: Online Shopping Portal

1 product

Online Shopping Portal

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Phpgurukul Online Shopping Portal	Version 1.0

Related CWEs

Improper Restriction of Excessive Authentication Attempts

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks.

References (4)

https://vuldb.com/?ctiid.233467

Source: cna@vuldb.com

Permissions Required

https://vuldb.com/?id.233467

Source: cna@vuldb.com

Third Party Advisory

https://vuldb.com/?ctiid.233467

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions Required

https://vuldb.com/?id.233467

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.