Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-6710

Published: 12/12/2023 Updated: 30/04/2024
CVSS v3 Base Score: 5.4 | Impact Score: 2.7 | Exploitability Score: 2.3
VMScore: 0
Subscribe to Redhat

Vulnerability Summary

A flaw was found in the mod_proxy_cluster in the Apache server. This issue may allow a malicious user to add a script in the 'alias' parameter in the URL to trigger the stored cross-site scripting (XSS) vulnerability. By adding a script on the alias parameter on the URL, it adds a new virtual host and adds the script to the cluster-manager page.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

redhat enterprise linux 9.0

modcluster mod proxy cluster -

Vendor Advisories

Red Hat:
Description<!---->A flaw was found in the mod_proxy_cluster in the Apache server This issue may allow a malicious user to add a script in the 'alias' parameter in the URL to trigger the stored cross-site scripting (XSS) vulnerability By adding a script on the alias parameter on the URL, it adds a new virtual host and adds the script to the cluste ...

Github Repositories

https://github.com/DedSec-47/Metasploit-Exploits-CVE-2023-6710

Welcome to the Metasploit Exploits Repository, your go-to resource for a comprehensive collection of cutting-edge exploits designed for penetration testing and ethical hacking. Developed and maintained by Mohamed Mounir Boudjema, this repository is crafted with a deep understanding of the evolving landscape of cybersecurity.

CVE-2023-6710 Exploit POC Explore the depths of CVE-2023-6710 with metasploit and our comprehensive Proof of Concept (PoC) This CVE, identified as a potential security vulnerability, has been meticulously examined to demonstrate its impact and provide a hands-on understanding of the associated risks Installation git clone githubcom/DedSec-47/Metasploit-Exploits-CVE-

https://github.com/DedSec-47/CVE-2023-6710

Explore the depths of CVE-2023-6710 with our comprehensive Proof of Concept (PoC). This CVE, identified as a potential security vulnerability, has been meticulously examined to demonstrate its impact and provide a hands-on understanding of the associated risks.

CVE-2023-6710 Exploit POC Explore the depths of CVE-2023-6710 with our comprehensive Proof of Concept (PoC) This CVE, identified as a potential security vulnerability, has been meticulously examined to demonstrate its impact and provide a hands-on understanding of the associated risks Installation git clone githubcom/DedSec-47/CVE-2023-6710git cd CVE-2023-6710 sudo

References

CWE-79https://access.redhat.com/security/cve/CVE-2023-6710https://bugzilla.redhat.com/show_bug.cgi?id=2254128https://access.redhat.com/errata/RHSA-2024:1316https://access.redhat.com/errata/RHSA-2024:1317https://access.redhat.com/errata/RHSA-2024:2387https://nvd.nist.govhttps://github.com/DedSec-47/Metasploit-Exploits-CVE-2023-6710https://access.redhat.com/security/cve/cve-2023-6710
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook