What is CVE-2023-4191?

CVE-2023-4191 is a medium-severity vulnerability in Sourcecodester Resort Reservation System, classified under External Control of File Name or Path. CVSS score: 6.3/10. Published 2023-08-06.

How severe is CVE-2023-4191?

Medium severity. CVSS v3 base score is 6.3 out of 10.

Vulnerability in Sourcecodester Resort Reservation System

CVE-2023-4191

A vulnerability, which was classified as critical, has been found in SourceCodester Resort Reservation System 1.0. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument page leads to f…

EPSS: 0.001 (24.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.

Affected products

Sourcecodester Resort Reservation System — versions 1.0

Weakness classification (CWE)

CWE-73 — External Control of File Name or Path

References

vuldb.com/ (vdb-entry, technical-description)
vuldb.com/ (signature, permissions-required)
github.com/Yesec/Resort-Reservation-System/blob/main/local file inclusion/vuln… (exploit)

Frequently asked questions

What is CVE-2023-4191?: CVE-2023-4191 is a medium-severity vulnerability in Sourcecodester Resort Reservation System, classified under External Control of File Name or Path. CVSS score: 6.3/10. Published 2023-08-06.
How severe is CVE-2023-4191?: Medium severity. CVSS v3 base score is 6.3 out of 10.