CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-41452

Cross Site Request Forgery vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the txt parameter in the index.php component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 83.9%

CVSS Severity

CVSS v3 Score 8.8

References

http://ajaxnewsticker.com
http://phpkobo.com
https://gist.github.com/RNPG/32be1c4bae6f9378d4f382ba0c92b367
http://ajaxnewsticker.com
http://phpkobo.com
https://gist.github.com/RNPG/32be1c4bae6f9378d4f382ba0c92b367

Products affected by CVE-2023-41452

Phpkobo » Ajaxnewsticker » Version: 1.0.5

cpe:2.3:a:phpkobo:ajaxnewsticker:1.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41452

Products

Pricing

Contact Us