CVE-2023-48393

Summary

Kaifa Technology WebITR is an online attendance system. A remote attacker with regular user privilege can obtain partial sensitive system information from error message.

Affected Software

VendorProductVersion RangeStatus
Kaifa TechnologyWebITR2_1_0_19affected

Weaknesses

  • CWE-209: CWE-209 Generation of Error Message Containing Sensitive Information

ADP Enrichment

CVE Program Container

Additional References

References