Vulnerabilities > CVE-2023-27238 - Unspecified vulnerability in Lavalite 9.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
LavaLite CMS v 9.0.0 was discovered to be vulnerable to web cache poisoning.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- https://github.com/LavaLite/cms/blob/c0a36dd748c8f7ff53eb16eb572bdeebe72eb420/app/Http/Controllers/ResourceController.php#L8
- https://github.com/LavaLite/cms/blob/c0a36dd748c8f7ff53eb16eb572bdeebe72eb420/app/Http/Controllers/ResourceController.php#L8
- https://github.com/M19O/Security-Advisories/tree/main/CVE-2023-27238
- https://github.com/M19O/Security-Advisories/tree/main/CVE-2023-27238