Bigprof Online Invoicing System الثغرات

التسلسل الزمني

النسخة

2.66
2.02
2.12
2.22
2.32

معالجة

Official Fix5
Temporary Fix0
Workaround0
Unavailable0
Not Defined6

قابلية الاستغلال

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined11

متجه الوصول

Not Defined0
Physical0
Local0
Adjacent1
Network10

توثيق

Not Defined0
High0
Low4
None7

تفاعل المستخدم

Not Defined0
Required9
None2

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤52
≤65
≤71
≤81
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤52
≤65
≤72
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤43
≤56
≤61
≤70
≤81
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤65
≤71
≤80
≤91
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤74
≤80
≤90
≤100

المجهز

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

إكسبلويت ذات هجوم فوري

<1k4
<2k6
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

إكسبلويت اليوم

<1k7
<2k4
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

حجم سوق الإكسبلويت

🔴 CTI النشاطات

Affected Versions (14): 2.0, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 3.0, 4.0, 4.1, 4.2, 4.3

منشورBaseTempالثغرة0dayاليومق�معالجةCTICVE
30/11/20235.35.3BigProf Online Invoicing System invoices_view.php سكربتات مشتركة$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-6427
30/11/20235.35.3BigProf Online Invoicing System invoices_view.php سكربتات مشتركة$0-$5k$0-$5kNot DefinedNot Defined0.09CVE-2023-6426
30/11/20235.35.3BigProf Online Invoicing System clients_view.php سكربتات مشتركة$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-6429
30/11/20235.35.3BigProf Online Invoicing System items_view.php سكربتات مشتركة$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-6428
29/09/20226.56.4BigProf Online Invoicing System Member pageTransferOwnership.php طلب تزوير مشترك$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-35675
29/09/20227.37.0BigProf Online Invoicing System membership_passwordReset.php حقن إس كيو إل$0-$5kجاري الحسابNot DefinedOfficial Fix0.00CVE-2020-35674
04/03/20215.04.8BigProf Online Invoicing System تجاوز الصلاحيات$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-27839
23/01/20214.44.4BigProf Online Invoicing System items_view.php طلب تزوير مشترك$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-21260
24/12/20203.53.5BigProf Online Invoicing System pageEditGroup.php سكربتات مشتركة$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-35677
24/12/20203.53.5BigProf Online Invoicing System Self-Registration membership_signup.php سكربتات مشتركة$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-35676

1 بعض الادخالات لم يتم عرضها

المزيد من الادخالات بحسب Bigprof

Do you want to use VulDB in your project?

Use the official API to access entries easily!