CVE-2023-43982

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 3, 2023

Updated: Nov 9, 2023

CWE ID 918

Summary

CVE-2023-43982 is a newly discovered Server-Side Request Forgery (SSRF) vulnerability affecting Bon Presta's boninstagramcarousel between versions 5.2.1 and 7.0.0. This issue permits attackers to leverage the vulnerable website as a proxy and execute malicious HTTP requests. By exploiting this vulnerability in insta_parser.php through the url parameter, attackers can potentially access and exfiltrate data from other targeted systems or launch attacks against them.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/syX250
https://www.cve.org/CVERecord?id=CVE-2023-43982
https://nvd.nist.gov/vuln/detail/CVE-2023-43982

Back to Vulnerability Database

CVE-2023-43982

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations