Rental Module Project Rental Module vulnerabilities
2 known vulnerabilities affecting rental_module_project/rental_module.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2023-2712P2CRITICALCVSS 9.8fixed in 23.05.152023-05-20
CVE-2023-2712 [CRITICAL] CWE-434 CVE-2023-2712: Unrestricted Upload of File with Dangerous Type vulnerability in "Rental Module" developed by third
Unrestricted Upload of File with Dangerous Type vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Command Injection, Using Malicious Files, Upload a Web Shell to a Web Server.
This issue affects Rental Module: before 23.05.15.
nvd
CVE-2023-2713P3CRITICALCVSS 9.8fixed in 23.05.152023-05-20
CVE-2023-2713 [CRITICAL] CWE-639 CVE-2023-2713: Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by thir
Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Authentication Abuse, Authentication Bypass.
This issue affects Rental Module: before 23.05.15.
nvd