CVE-2023-6886

critical

Description

A vulnerability was found in xnx3 wangmarket 6.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component Role Management Page. The manipulation leads to code injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-248246 is the identifier assigned to this vulnerability.

References

Advisories
Exploits

https://vuldb.com/?id.248246

https://vuldb.com/?ctiid.248246

https://github.com/xnx3/wangmarket/issues/8

Details

Source: Mitre, NVD

Published: 2023-12-17

Updated: 2024-05-17

Named Vulnerability: Xnx3 Wangmarket Cross-Site Scripting vulnerability

Risk Information

CVSS v2

Base Score: 5.8

Vector: CVSS2#AV:N/AC:L/Au:M/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00426