Vulnerability Details CVE-2022-3152
Unverified Password Change in GitHub repository phpfusion/phpfusion prior to 9.10.20.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.4%
CVSS Severity
CVSS v3 Score 9.6
References
- https://github.com/phpfusion/phpfusion/commit/57c96d4a0c00e8e1e25100087654688123c6e991
- https://huntr.dev/bounties/b3f888d2-5c71-4682-8287-42613401fd5a
- https://github.com/phpfusion/phpfusion/commit/57c96d4a0c00e8e1e25100087654688123c6e991
- https://huntr.dev/bounties/b3f888d2-5c71-4682-8287-42613401fd5a
Products affected by CVE-2022-3152
-
cpe:2.3:a:php-fusion:phpfusion:7.02.07
-
cpe:2.3:a:php-fusion:phpfusion:8.00.40
-
cpe:2.3:a:php-fusion:phpfusion:8.00.50
-
cpe:2.3:a:php-fusion:phpfusion:8.00.60
-
cpe:2.3:a:php-fusion:phpfusion:8.00.70
-
cpe:2.3:a:php-fusion:phpfusion:9.03.100
-
cpe:2.3:a:php-fusion:phpfusion:9.03.110
-
cpe:2.3:a:php-fusion:phpfusion:9.03.30
-
cpe:2.3:a:php-fusion:phpfusion:9.03.40
-
cpe:2.3:a:php-fusion:phpfusion:9.03.50
-
cpe:2.3:a:php-fusion:phpfusion:9.03.60
-
cpe:2.3:a:php-fusion:phpfusion:9.03.70
-
cpe:2.3:a:php-fusion:phpfusion:9.03.80
-
cpe:2.3:a:php-fusion:phpfusion:9.03.90