Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-36816

Published: 03/07/2023 Updated: 10/07/2023
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

Vulnerability Summary

2FA is a Web app to manage Two-Factor Authentication (2FA) accounts and generate their security codes. Cross site scripting (XSS) injection can be done via the account/service field. This was tested in docker-compose environment. This vulnerability has been patched in version 4.0.3.

Vulnerable Product Search on Vulmon Subscribe to Product

2fauth 2fauth

References

CWE-79https://github.com/Bubka/2FAuth/security/advisories/GHSA-cwhq-2mcq-pp9qhttps://github.com/Bubka/2FAuth/releases/tag/v4.0.3https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-33545CVE-2024-35725CVE-2024-32704overflowfile uploadCVE-2024-0230CVE-2024-32705CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook