CVE-2023-0648

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-0648

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-0648.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-0648

Published

2023-02-02T15:17:41Z

Modified

2025-01-14T11:18:50.752411Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability, which was classified as critical, was found in dst-admin 1.5.0. This affects an unknown part of the file /home/masterConsole. The manipulation of the argument command leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-220035.

References

Affected packages

Git / github.com/qinming99/dst-admin

Affected ranges

Type: GIT
Repo: https://github.com/qinming99/dst-admin
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

7e9fdc3fe7e96a5badb5ce9922a365351494d525

Affected versions

1.*

1.0.0

v1.*

v1.0.1

v1.0.2

v1.0.3

v1.0.4

v1.0.5

v1.0.6

v1.0.7

v1.1.0

v1.2.0

v1.3.0

v1.3.1

v1.4.0

v1.5.0