Potsky

potsky

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Pimp My Log

pimp_my_log

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-53895 1Potsky 1Pimp My Log Dec 30, 2025 Dec 16, 2025 9.3 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 PimpMyLog 1.7.14 contains an improper access control vulnerability that allows remote attackers to create admin accounts without authorization through the configuration endpoint. Attackers can exploit the unsanitized use...Show more PimpMyLog 1.7.14 contains an improper access control vulnerability that allows remote attackers to create admin accounts without authorization through the configuration endpoint. Attackers can exploit the unsanitized username field to inject malicious JavaScript, create a hidden backdoor account, and potentially access sensitive server-side log information and environmental variables.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2023-53895

1Potsky

1Pimp My Log

Dec 30, 2025

Dec 16, 2025

9.3 CRITICAL· v4

9.8 CRITICAL· v3

N/A· v2

PimpMyLog 1.7.14 contains an improper access control vulnerability that allows remote attackers to create admin accounts without authorization through the configuration endpoint. Attackers can exploit the unsanitized username field to inject malicious JavaScript, create a hidden backdoor account, and potentially access sensitive server-side log information and environmental variables.Show less