CVE-2023-28413

Summary

Directory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and earlier allows a remote unauthenticated attacker to obtain sensitive information, alter the website, or cause a denial-of-service (DoS) condition.

Affected Software

VendorProductVersion RangeStatus
Monkey Wrench Inc.Snow Monkey Formsversions v5.0.6 and earlieraffected

Weaknesses

  • Directory traversal

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References