Riccardo Degli Esposti

2 exploits Active since Jul 2023
CVE-2023-31465 WRITEUP CRITICAL WRITEUP
FSMLabs TimeKeeper <8.0.28 - Command Injection
An issue was discovered in FSMLabs TimeKeeper 8.0.17 through 8.0.28. By intercepting requests from various timekeeper streams, it is possible to find the getsamplebacklog call. Some query parameters are passed directly in the URL and named arg[x], with x an integer starting from 1; it is possible to modify arg[2] to insert Bash code that will be executed directly by the server.
CVSS 9.8
CVE-2023-31466 WRITEUP MEDIUM WRITEUP
FSMLabs TimeKeeper 8.0.17-8.0.27 - Stored Cross-Site Scripting in Compliance Report and Source Configuration
An XSS issue was discovered in FSMLabs TimeKeeper 8.0.17. On the "Configuration -> Compliance -> Add a new compliance report" and "Configuration -> Timekeeper Configuration -> Add a new source there" screens, there are entry points to inject JavaScript code.
CVSS 5.4