CVE-2023-3684

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 16, 2023

Updated: May 17, 2024

CWE ID 473

Summary

CVE-2023-3684 is a recently identified vulnerability affecting LivelyWorks Articart 2.0.1. This issue lies within the Base64 Encoding Handler's /change-language/de_DE file and is classified as an open redirect vulnerability. The manipulation of the redirectTo argument enables an attacker to redirect users to malicious websites. The attack can be executed remotely, making it a significant security concern. VDB-234230 is the assigned identifier for this weakness. Notably, the vendor was contacted about this disclosure but did not respond.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzfCp4
https://www.cve.org/CVERecord?id=CVE-2023-3684
https://nvd.nist.gov/vuln/detail/CVE-2023-3684

Back to Vulnerability Database

CVE-2023-3684

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations