Lucene search
JpcertCVE-2023-32623HistoryJun 28, 2023 - 5:15 a.m.
CVE-2023-32623
2023-06-2805:15:10
CWE-22
jpcert
web.nvd.nist.gov
19
cve-2023-32623
directory traversal
snow monkey forms
security vulnerability
nvd
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
AI Score
9.1
Confidence
High
EPSS
0.003
Percentile
71.8%
Directory traversal vulnerability in Snow Monkey Forms v5.1.1 and earlier allows a remote unauthenticated attacker to delete arbitrary files on the server.
Affected configurations
Node
2incsnow_monkey_formsRange<5.1.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| 2inc | snow_monkey_forms | * | cpe:2.3:a:2inc:snow_monkey_forms:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Monkey Wrench Inc.",
"product": "Snow Monkey Forms",
"versions": [
{
"version": "v5.1.1 and earlier",
"status": "affected"
}
]
}
]Related
prion
prion
Directory traversal
2023-06-28 05:15:00
nvd
nvd
CVE-2023-32623
2023-06-28 05:15:10
jvn
jvn
cvelist
cvelist
CVE-2023-32623
2023-06-28 04:16:55
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
AI Score
9.1
Confidence
High
EPSS
0.003
Percentile
71.8%
Related for CVE-2023-32623