CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31708

A Cross-Site Request Forgery (CSRF) in EyouCMS v1.6.2 allows attackers to execute arbitrary commands via a supplying a crafted HTML file to the Upload software format function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.9%

CVSS Severity

CVSS v3 Score 4.3

References

https://github.com/weng-xianhu/eyoucms/issues/41
https://github.com/weng-xianhu/eyoucms/issues/41

Products affected by CVE-2023-31708

Eyoucms » Eyoucms » Version: 1.6.2

cpe:2.3:a:eyoucms:eyoucms:1.6.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31708

Products

Pricing

Contact Us