Lucene search
@huntrdevCVE-2023-1269HistoryMar 08, 2023 - 11:15 a.m.
CVE-2023-1269
2023-03-0811:15:09
CWE-798
@huntrdev
web.nvd.nist.gov
30
cve
2023
1269
github
repository
easyappointments
nvd
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.7
Confidence
High
EPSS
0.003
Percentile
65.4%
Use of Hard-coded Credentials in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
Affected configurations
Node
easyappointmentseasyappointmentsRange<1.5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| easyappointments | easyappointments | * | cpe:2.3:a:easyappointments:easyappointments:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "alextselegidis",
"product": "alextselegidis/easyappointments",
"versions": [
{
"version": "unspecified",
"lessThan": "1.5.0",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
github
github
Easy!Appointments uses hard-coded credentials
2023-03-08 12:30:16
gitlab
gitlab
Use of Hard-coded Credentials
2023-03-08 00:00:00
nvd
nvd
CVE-2023-1269
2023-03-08 11:15:09
prion
prion
Hardcoded credentials
2023-03-08 11:15:00
huntr
huntr
Default account creation on all installation methods
2023-02-06 23:07:01
osv
osv
Easy!Appointments uses hard-coded credentials
2023-03-08 12:30:16
CVE-2023-1269
2023-03-08 11:15:09
veracode
veracode
Authentication Bypass
2023-03-17 09:17:08
cvelist
cvelist
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
6.7
Confidence
High
EPSS
0.003
Percentile
65.4%
Related for CVE-2023-1269