CVE-2023-6615

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Dec 8, 2023

Updated: May 17, 2024

CWE ID 200

Summary

CVE-2023-6615 is a newly disclosed vulnerability affecting the Typecho content management system version 1.2.1. This issue lies within the /admin/manage-users.php file and involves a problematic functionality. Manipulation of the page argument results in information disclosure. The exploit code has been made public, increasing the risk of potential attacks. Vendor VDB-247250 identifies this vulnerability, and despite early notification, the vendor has yet to respond.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tu8k-R
https://www.cve.org/CVERecord?id=CVE-2023-6615
https://nvd.nist.gov/vuln/detail/CVE-2023-6615

Back to Vulnerability Database

CVE-2023-6615

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations