CVE-2023-43323

Medium

mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, the server sends a HTTP and DNS request to…

mitre·NVD-CWE-noinfo·Published 2023-09-28

CVSS

6.5

EPSS

0.02

KEV

Exploits

cve.orgen

270 chars

mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, the server sends a HTTP and DNS request to external server. The Parameters effected are multiple - messageText, data[wall_photo], data[userShareVideo] and data[userShareLink].

NVDen

270 chars

NVDes

293 chars

mooSocial 3.1.8 es vulnerable a la interacción de servicios externos en la función posterior. Cuando se ejecuta, el servidor envía una solicitud HTTP y DNS al servidor externo. Los parámetros afectados son múltiples: messageText, data[wall_photo], data[userShareVideo] and data[userShareLink].

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	6.5	3.9	2.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N