Vulnerabilities > CVE-2023-28698 - Unspecified vulnerability in Wddgroup Fantsy 2.1.8

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

wddgroup

NVD

Published: 2023-06-02

Updated: 2024-11-21

Summary

Wade Graphic Design FANTSY has a vulnerability of insufficient authorization check. An unauthenticated remote user can exploit this vulnerability by modifying URL parameters to gain administrator privileges to perform arbitrary system operation or disrupt service.

Vulnerable Configurations

Part	Description	Count
Application	Wddgroup Wddgroup Fantsy 2.1.8	1

References

https://www.twcert.org.tw/tw/cp-132-7101-f88db-1.html
https://www.twcert.org.tw/tw/cp-132-7101-f88db-1.html