CVE Details
Basic Information
| Title | Campcodes House Rental Management System index.php file inclusion |
|---|---|
| Type | cve |
| Published | 2024-03-26T23:00:07.496Z |
| Modified | 2024-08-01T19:25:42.152Z |
Product Information
| Vendor | Campcodes |
|---|---|
| Product | House Rental Management System |
| Version | 1.0 |
CVSS Information
| Base Score | 5.4 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |
AI Analysis
| AI Description | A critical vulnerability in Campcodes House Rental Management System 1.0 allows remote attackers to include arbitrary files via the ‘page’ argument in index.php, with a public exploit available. |
|---|---|
| AI Severity | Medium |
| AI Vendor | Campcodes |
| AI Product | House Rental Management System |
| AI Version | 1.0 |
Affected Products
- Campcodes House Rental Management System 1.0
Additional Information
| CWE List | CWE-73 |
|---|---|
| Source | VulDB |
Description
A vulnerability was found in Campcodes House Rental Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument page leads to file inclusion. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-257983.