CVE-2023-51805 | TDuckCLoud tduck-platform 4.0 FormDataMysqlService.java search getFormKey information disclosure (Issue 22)

Inserito da Angelo Barbosa | Gen 13, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in TDuckCLoud tduck-platform 4.0. Affected by this issue is the function search of the file FormDataMysqlService.java. The manipulation of the argument getFormKey leads to information disclosure.

This vulnerability is handled as CVE-2023-51805. The attack may be launched remotely. There is no exploit available.

CVE-2023-51805 | TDuckCLoud tduck-platform 4.0 FormDataMysqlService.java search getFormKey information disclosure (Issue 22)

Post correlati

CVE-2024-24388 | XunRuiCMS up to 4.6.2 Background Login cross site scripting

CVE-2024-28784 | IBM QRadar SIEM 7.5 Web UI cross site scripting (XFDB-285893)

CVE-2024-39069 | ifood Order Manager 3.35.5 Gestor de Peddios.exe uncontrolled search path

CVE-2023-41987 | Apple macOS Printing Privilege Escalation