CVE-2023-1002

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-1002

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1002.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-1002

Published

2023-02-24T08:15:11.243Z

Modified

2025-11-20T12:12:22.673759Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability, which was classified as problematic, has been found in MuYuCMS 2.2. This issue affects some unknown processing of the file index.php. The manipulation of the argument file_path leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221735.

References

Affected packages

Git / github.com/muyucms/muyucms

Affected ranges

Type: GIT
Repo: https://github.com/muyucms/muyucms
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

1ac31c1471a9332da6d963b23dd93d77b7facd0e

Affected versions

v2.*

v2.1

v2.2

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1002.json"