TravianZ 8.3.4 and 8.3.3: Installation Script Access Control Vulnerability
CVE-2023-36994 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
In TravianZ 8.3.4 and 8.3.3, Incorrect Access Control in the installation script allows an attacker to overwrite the server configuration and inject PHP code.
Learn more about our Cis Benchmark Audit For Server Software.