CVE-2023-1044

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-1044

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1044.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-1044

Published

2023-02-26T13:15:10Z

Modified

2025-01-14T11:17:58.017525Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A vulnerability was found in MuYuCMS 2.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /editor/index.php. The manipulation of the argument file_path leads to relative path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-221803.

References

Affected packages

Git / github.com/muyucms/muyucms

Affected ranges

Type: GIT
Repo: https://github.com/muyucms/muyucms
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

1ac31c1471a9332da6d963b23dd93d77b7facd0e

Affected versions

v2.*

v2.1

v2.2