{
    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
    "CVE_data_meta": {
        "ID": "CVE-2023-6467",
        "ASSIGNER": "cna@vuldb.com",
        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A vulnerability was found in Thecosy IceCMS 2.0.1. It has been rated as problematic. This issue affects some unknown processing of the file /Websquare/likeClickComment/ of the component Comment Like Handler. The manipulation leads to improper enforcement of a single, unique action. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The identifier VDB-246617 was assigned to this vulnerability."
            },
            {
                "lang": "deu",
                "value": "Eine Schwachstelle wurde in Thecosy IceCMS 2.0.1 ausgemacht. Sie wurde als problematisch eingestuft. Dies betrifft einen unbekannten Teil der Datei /Websquare/likeClickComment/ der Komponente Comment Like Handler. Durch Manipulieren mit unbekannten Daten kann eine improper enforcement of a single, unique action-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren. Die Komplexit\u00e4t eines Angriffs ist eher hoch. Die Ausnutzbarkeit gilt als schwierig. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "CWE-837 Improper Enforcement of a Single, Unique Action",
                        "cweId": "CWE-837"
                    }
                ]
            }
        ]
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "Thecosy",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "IceCMS",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "=",
                                            "version_value": "2.0.1"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "references": {
        "reference_data": [
            {
                "url": "https://vuldb.com/?id.246617",
                "refsource": "MISC",
                "name": "https://vuldb.com/?id.246617"
            },
            {
                "url": "https://vuldb.com/?ctiid.246617",
                "refsource": "MISC",
                "name": "https://vuldb.com/?ctiid.246617"
            },
            {
                "url": "http://39.106.130.187/wenjian/2.html",
                "refsource": "MISC",
                "name": "http://39.106.130.187/wenjian/2.html"
            }
        ]
    },
    "credits": [
        {
            "lang": "en",
            "value": "zero121 (VulDB User)"
        }
    ],
    "impact": {
        "cvss": [
            {
                "version": "3.1",
                "baseScore": 3.1,
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
                "baseSeverity": "LOW"
            },
            {
                "version": "3.0",
                "baseScore": 3.1,
                "vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N",
                "baseSeverity": "LOW"
            },
            {
                "version": "2.0",
                "baseScore": 2.1,
                "vectorString": "AV:N/AC:H/Au:S/C:N/I:P/A:N"
            }
        ]
    }
}