CVE-2017-20069

MEDIUM

Hindu Matrimonial Script - Privilege Escalation

Title source: llm

Description

A vulnerability classified as critical has been found in Hindu Matrimonial Script. This affects an unknown part of the file /admin/countrymanagement.php. The manipulation leads to improper privilege management. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Exploits (1)

exploitdb WORKING POC

by Ihsan Sencan · textwebappsphp

https://www.exploit-db.com/exploits/41044

View Code ZIP pw:eip

References (2)

Core 2

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/41044/

Third Party Advisory, VDB Entry x_refsource_misc

https://vuldb.com/?id.95409

Scores

CVSS v3 6.3

EPSS 0.0028

EPSS Percentile 51.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-269

Status published

Products (1)

hindu_matrimonial_script_project/hindu_matrimonial_script

Published Jun 21, 2022

Tracked Since Feb 18, 2026