A vulnerability was detected in PHPGurukul News Portal 1.0. The impacted element is an unknown function of the file /onps/settings.py. Performing a manipulation results in insertion of sensitive information into debugging code. It is possible to initiate the attack remotely. The attack's complexity is rated as high. The exploitability is regarded as difficult. The exploit is now public and may be used.
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XPhpgurukul News Portal
APPPhpgurukul1.0
Related vulnerabilities
Nieautoryzowany upload pliku dowolnego formatu w Phpgurukul News Portal
Arbitrary File Deletion w Phpgurukul News Portal V4.1 (remove_file.php)
SQL Injection w Phpgurukul News Portal V4.1 (check_availablity.php)
A vulnerability was found in PHPGurukul News Portal Project 4.1 and classified as critical. Affected by this i...
A vulnerability has been found in PHPGurukul News Portal 4.1 and classified as critical. Affected by this vuln...