CVE-2023-49032

Published
View on NVD ↗
CVSS v3
9.8
CRITICAL
CVSS v2
N/A
Affected
2
PROJECTS

Description

An issue in LTB Self Service Password before v.1.5.4 allows a remote attacker to execute arbitrary code and obtain sensitive information via hijack of the SMS verification code function to arbitrary phone.

piuppi/Proof-of-Concepts
piuppi/Proof-of-Concepts
As a result of researching bugs, I often come across new and interesting vulnerabilities. I finally decided to create a centralized repository for proof of concepts. Everything is sorted by vendor with subdirectories for each product.
GitHubGitHub
5
ltb-project/self-service-password
ltb-project/self-service-password
Web interface to change and reset password in an LDAP directory
GitHubGitHub
1.31K