CVE-2023-1883 : Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.12.

Published 2023-04-05 17:15:07

Updated 2023-04-12 14:33:53

Source huntr.dev

View at NVD, CVE.org

Vulnerability category: BypassGain privilege

Exploit prediction scoring system (EPSS) score for CVE-2023-1883

Probability of exploitation activity in the next 30 days: 0.08%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 35 % EPSS Score History EPSS FAQ

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.4	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N	2.8	2.5	huntr.dev
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: None
5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N	2.8	2.5	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: None

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Assigned by: security@huntr.dev (Primary)

https://github.com/thorsten/phpmyfaq/commit/db77df888178766987398597d4f153831c62a503

fix: added check if news or FAQs are active · thorsten/phpMyFAQ@db77df8 · GitHub
Patch
https://huntr.dev/bounties/2f1e417d-cf64-4cfb-954b-3a9cb2f38191

Broken access control - Someone still can comment in unactive FAQ NEWS vulnerability found in phpmyfaq
Exploit;Patch;Third Party Advisory

Phpmyfaq » Phpmyfaq
Versions before (<) 3.1.12
cpe:2.3:a:phpmyfaq:phpmyfaq:*:*:*:*:*:*:*:*
Matching versions