← back
CVE-2022-29950

CVE-2022-29950

EPSS 0.9%
Experian Hunter 1.16 allows remote authenticated users to modify assumed-immutable elements via the (1) rule name parameter to the Rules page or the (2) subrule name or (3) categories name parameter to the Subrules page. NOTE: the vendor disputes this because version 1.16 has never existed
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/Voidager88/73c2d512a72cceb0ef84dbf87a497d10https://www.experian.in/hunter