CVE-2023-0646

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-0646

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-0646.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-0646

Published

2023-02-02T15:17:39Z

Modified

2025-01-08T09:15:11.624946Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability classified as critical was found in dst-admin 1.5.0. Affected by this vulnerability is an unknown functionality of the file /home/cavesConsole. The manipulation of the argument command leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-220033 was assigned to this vulnerability.

References

Affected packages

Git / github.com/qinming99/dst-admin

Affected ranges

Type: GIT
Repo: https://github.com/qinming99/dst-admin
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

7e9fdc3fe7e96a5badb5ce9922a365351494d525

Affected versions

1.*

1.0.0

v1.*

v1.0.1

v1.0.2

v1.0.3

v1.0.4

v1.0.5

v1.0.6

v1.0.7

v1.1.0

v1.2.0

v1.3.0

v1.3.1

v1.4.0

v1.5.0