CVE-2023-4371

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Aug 15, 2023
Updated: May 17, 2024
CWE ID 79

Summary

CVE-2023-4371 is a newly discovered vulnerability affecting phpRecDB 1.3.1. This issue, which carries a problematic rating, impacts an unspecified functionality within the /index.php file. The vulnerability is triggered by manipulating the r/view argument, resulting in cross-site scripting (XSS). An attacker can exploit this remotely, making it a significant security concern. Vulnerability Database (VDB) has assigned the identifier VDB-237194 to this vulnerability. Despite early disclosure, the vendor has not responded to efforts to address this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share