CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-27889

Cross-site request forgery (CSRF) vulnerability in LIQUID SPEECH BALLOON versions prior to 1.2 allows a remote unauthenticated attacker to hijack the authentication of a user and to perform unintended operations by having a user view a malicious page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.5%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2023-27889

Lqd » Liquid Speech Balloon » Version: N/A

cpe:2.3:a:lqd:liquid_speech_balloon:-
Lqd » Liquid Speech Balloon » Version: 1.0.0

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.0
Lqd » Liquid Speech Balloon » Version: 1.0.4

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.4
Lqd » Liquid Speech Balloon » Version: 1.0.5

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.5
Lqd » Liquid Speech Balloon » Version: 1.0.6

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.6
Lqd » Liquid Speech Balloon » Version: 1.0.7

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.7
Lqd » Liquid Speech Balloon » Version: 1.0.8

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.8
Lqd » Liquid Speech Balloon » Version: 1.0.9

cpe:2.3:a:lqd:liquid_speech_balloon:1.0.9
Lqd » Liquid Speech Balloon » Version: 1.1.0

cpe:2.3:a:lqd:liquid_speech_balloon:1.1.0
Lqd » Liquid Speech Balloon » Version: 1.1.1

cpe:2.3:a:lqd:liquid_speech_balloon:1.1.1
Lqd » Liquid Speech Balloon » Version: 1.1.4

cpe:2.3:a:lqd:liquid_speech_balloon:1.1.4
Lqd » Liquid Speech Balloon » Version: 1.1.6

cpe:2.3:a:lqd:liquid_speech_balloon:1.1.6
Lqd » Liquid Speech Balloon » Version: 1.1.7

cpe:2.3:a:lqd:liquid_speech_balloon:1.1.7
Lqd » Liquid Speech Balloon » Version: 1.1.8

cpe:2.3:a:lqd:liquid_speech_balloon:1.1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-27889

Products

Pricing

Contact Us