CVE-2022-39989

CRITICAL

Fighting Cock Information System 1.0 - Use of Hard-coded Credentials

Title source: llm

Description

An issue was discovered in Fighting Cock Information System 1.0, which uses default credentials, but does not force nor prompt the administrators to change the credentials.

References (3)

Core 3

Core References

Third Party Advisory

https://gist.github.com/0xHop/43c4da65e0d101328a46b1bd5a11b262

Broken Link

https://gist.github.com/0xHop/6ed962a1978edb1bd620c9c487400403

Product

https://www.sourcecodester.com/php/12824/fighting-cock-information-system.html

Scores

CVSS v3 9.8

EPSS 0.0080

EPSS Percentile 51.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-798

Status published

Products (1)

fighting_cock_information_system_project/fighting_cock_information_system 1.0

Published Apr 26, 2023

Tracked Since Feb 18, 2026