Lucene search
CVE-2023-23752
An improper access check allows unauthorized access to webservice endpoint
Show more
| Reporter | Title | Published | Views | Family All 77 |
|---|---|---|---|---|
 | Joomla 4.0.x < 4.2.8 Joomla 4.2.8 Security Release (5878-joomla-4-2-8-security-release) | 16 Feb 202300:00 | – | nessus |
 | Exploit for CVE-2023-23752 | 12 Apr 202305:59 | – | githubexploit |
| Exploit for Improper Access Control in Joomla Joomla! | 8 May 202311:31 | – | githubexploit |
| Exploit for Improper Access Control in Joomla Joomla! | 11 Apr 202413:39 | – | githubexploit |
| Exploit for Improper Access Control in Joomla Joomla! | 4 Dec 202313:05 | – | githubexploit |
| Exploit for Improper Access Control in Joomla Joomla! | 19 Feb 202410:27 | – | githubexploit |
| Exploit for CVE-2023-23752 | 14 Mar 202307:15 | – | githubexploit |
| Exploit for Improper Access Control in Joomla Joomla! | 12 Mar 202410:59 | – | githubexploit |
| Exploit for CVE-2023-23752 | 23 Feb 202301:52 | – | githubexploit |
| Exploit for Improper Access Control in Joomla Joomla! | 9 Mar 202307:42 | – | githubexploit |
10
[
{
"defaultStatus": "unaffected",
"product": "Joomla! CMS",
"vendor": "Joomla! Project",
"versions": [
{
"status": "affected",
"version": "4.0.0-4.2.7"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| public | query param | /api/index.php/v1/users | Unauthorized access to user data endpoint in Joomla due to improper access checks. | CWE-284 |
| public | query param | /api/index.php/v1/config/application | Unauthorized access to application configuration data endpoint in Joomla due to improper access checks. | CWE-284 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo16 Feb 2023 17:15Current
5.6Medium risk
Vulners AI Score5.6
CVSS35.3
EPSS0.94527