Vulnerabilities > CVE-2021-43478 - Unspecified vulnerability in Hoosk 1.8.0

CVSS 5.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

hoosk

NVD

Published: 2022-03-31

Updated: 2022-04-11

Summary

A vulnerability exists in Hoosk 1.8.0 in /install/index.php, due to a failure to check if config.php already exists in the root directory, which could let a malicious user reinstall the website.

Vulnerable Configurations

Part	Description	Count
Application	Hoosk Hoosk Hoosk 1.8.0	1

References

https://github.com/kr0za/bugs/issues/1