TravianZ 8.3.4 and 8.3.3: Installation Script Access Control Vulnerability

TravianZ 8.3.4 and 8.3.3: Installation Script Access Control Vulnerability

CVE-2023-36994 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In TravianZ 8.3.4 and 8.3.3, Incorrect Access Control in the installation script allows an attacker to overwrite the server configuration and inject PHP code.

Learn more about our Cis Benchmark Audit For Server Software.