CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-49443

DoraCMS v2.1.8 was discovered to re-use the same code for verification of valid usernames and passwords. This vulnerability allows attackers to gain access to the application via a bruteforce attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/woshinibaba222/DoraCMS-Verification-Code-Reuse
https://github.com/woshinibaba222/DoraCMS-Verification-Code-Reuse

Products affected by CVE-2023-49443

Html-Js » Doracms » Version: 2.1.8

cpe:2.3:a:html-js:doracms:2.1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-49443

Products

Pricing

Contact Us