Tencent tdsqlpcloud through 1.8.5 allows unauthenticated remote attackers to discover database credentials via an index.php/api/install/get_db_info request, a related issue to CVE-2023-42387.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/Narrator21/tdsql/blob/main/20230927.md |
History
Mon, 09 Sep 2024 19:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-200 |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-31T00:00:00
Updated: 2024-09-09T17:25:42.970Z
Reserved: 2023-12-31T00:00:00
Link: CVE-2023-52286
Vulnrichment
Updated: 2024-08-02T22:55:41.280Z
NVD
Status : Modified
Published: 2023-12-31T07:15:07.580
Modified: 2024-11-21T08:39:31.000
Link: CVE-2023-52286
Redhat
No data.