CVE-2023-1045

A vulnerability was found in MuYuCMS 2.2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin.php/accessory/filesdel.html. The manipulation of the argument filedelur leads to relative path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221804.
References
Link Resource
https://github.com/MuYuCMS/MuYuCMS/issues/6 Exploit Issue Tracking
https://vuldb.com/?ctiid.221804 Permissions Required
https://vuldb.com/?id.221804 Permissions Required
https://github.com/MuYuCMS/MuYuCMS/issues/6 Exploit Issue Tracking
https://vuldb.com/?ctiid.221804 Permissions Required
https://vuldb.com/?id.221804 Permissions Required
Configurations

Configuration 1 (hide)

cpe:2.3:a:muyucms:muyucms:2.2:*:*:*:*:*:*:*

History

21 Nov 2024, 07:38

Type Values Removed Values Added
References () https://github.com/MuYuCMS/MuYuCMS/issues/6 - Exploit, Issue Tracking () https://github.com/MuYuCMS/MuYuCMS/issues/6 - Exploit, Issue Tracking
References () https://vuldb.com/?ctiid.221804 - Permissions Required () https://vuldb.com/?ctiid.221804 - Permissions Required
References () https://vuldb.com/?id.221804 - Permissions Required () https://vuldb.com/?id.221804 - Permissions Required
CVSS v2 : 4.7
v3 : 8.1
v2 : 4.7
v3 : 3.8

Information

Published : 2023-02-26 13:15

Updated : 2024-11-21 07:38


NVD link : CVE-2023-1045

Mitre link : CVE-2023-1045

CVE.ORG link : CVE-2023-1045


JSON object : View

Products Affected

muyucms

  • muyucms
CWE
CWE-23

Relative Path Traversal

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')