ahrixia/CVE-2023-43323

Releases0

Stars1

mooSocial v3.1.8 is vulnerable to external service interaction on post function.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-43323 ↗	Sep 28, 2023Thursday, 28 September 2023, 20:15	6.5 MEDIUM	—
mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, the server sends a HTTP and DNS request to external server. The Parameters effected are multiple - messageText, data[wall_photo], data[userShareVideo] and data[userShareLink].