Lucene search
HistoryMay 17, 2024 - 7:15 a.m.
CVE-2023-38399
cve-2023-38399
improper limitation
path traversal
averta phlox portfolio
php
local file inclusion
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
AI Score
8.6
Confidence
High
EPSS
0
Percentile
10.5%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Averta Phlox Portfolio allows PHP Local File Inclusion.This issue affects Phlox Portfolio: from n/a through 2.3.1.
Related
cvelist
cvelist
vulnrichment
vulnrichment
wpvulndb
wpvulndb
Phlox Portfolio < 2.3.2 - Unauthenticated Local File Inclusion
2023-11-24 00:00:00
cve
cve
CVE-2023-38399
2024-05-17 07:15:58
wordfence
wordfence
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
AI Score
8.6
Confidence
High
EPSS
0
Percentile
10.5%
Related for NVD:CVE-2023-38399