Vulnerability Description
A vulnerability, which was classified as problematic, was found in InternalError503 Forget It up to 1.3. This affects an unknown part of the file js/settings.js. The manipulation of the argument setForgetTime with the input 0 leads to infinite loop. It is possible to launch the attack on the local host. Upgrading to version 1.4 is able to address this issue. The patch is named adf0c7fd59b9c935b4fd675c556265620124999c. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-226119.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Forget It Project | Forget It | < 1.4 |
Related Weaknesses (CWE)
References
- https://github.com/InternalError503/forget-it/commit/adf0c7fd59b9c935b4fd675c556Patch
- https://github.com/InternalError503/forget-it/releases/tag/1.4Release Notes
- https://vuldb.com/?ctiid.226119Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.226119Third Party Advisory
- https://github.com/InternalError503/forget-it/commit/adf0c7fd59b9c935b4fd675c556Patch
- https://github.com/InternalError503/forget-it/releases/tag/1.4Release Notes
- https://vuldb.com/?ctiid.226119Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.226119Third Party Advisory
FAQ
What is CVE-2015-10103?
CVE-2015-10103 is a vulnerability with a CVSS score of 2.8 (LOW). A vulnerability, which was classified as problematic, was found in InternalError503 Forget It up to 1.3. This affects an unknown part of the file js/settings.js. The manipulation of the argument setFo...
How severe is CVE-2015-10103?
CVE-2015-10103 has been rated LOW with a CVSS base score of 2.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-10103?
Check the references section above for vendor advisories and patch information. Affected products include: Forget It Project Forget It.