Directory Listing Vulnerability in Customer Support System by Unknown Vendor
CVE-2023-49979

7.5HIGH

Key Information:

Vendor: Unknown Vendor
Status: Customer Support System
Vendor: CVE Published:; 21 March 2024

🔔 Create Unknown Vendor Vulnerability Alert

What is CVE-2023-49979?

A directory listing vulnerability in the Customer Support System version 1 has been discovered, enabling unauthorized attackers to view sensitive files and directories within the application. This raises significant security concerns as attackers can exploit this vulnerability to access confidential information stored on the server, potentially leading to further attacks or data breaches.

References

https://www.sourcecodester.com/php/15653/best-student-res...

https://github.com/geraldoalcantara/CVE-2023-49979

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2024
Vulnerability Reserved
Dec 4, 2023