VYPR
Unrated severityNVD Advisory· Published Mar 31, 2023· Updated Feb 11, 2025

Rockoa Configuration File webmainConfig.php code injection

CVE-2023-1773

Description

A vulnerability was found in Rockoa 2.3.2. It has been declared as critical. This vulnerability affects unknown code of the file webmainConfig.php of the component Configuration File Handler. The manipulation leads to code injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-224674 is the identifier assigned to this vulnerability.

Affected products

2
  • Rockoa/Rockoacpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =2.3.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.