Description

A vulnerability was found in xnx3 wangmarket 6.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component Role Management Page. The manipulation leads to code injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-248246 is the identifier assigned to this vulnerability.

Remediation

References

https://github.com/xnx3/wangmarket/issues/8

https://vuldb.com/?ctiid.248246

https://vuldb.com/?id.248246

Related Vulnerabilities

CVE-2020-2162 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2020-7677 Vulnerability in npm package thenify

CVE-2023-40037 Vulnerability in maven package org.apache.nifi:nifi-dbcp-service-api

CVE-2019-10767 Vulnerability in npm package iobroker.js-controller

CVE-2023-30517 Vulnerability in maven package io.jenkins.plugins:neuvector-vulnerability-scanner

Severity

Critical

Classification

CWE-94 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Not Applicable Permissions Required Third Party Advisory