Lucene search

GoogleOSV:CVE-2023-27842

HistoryMar 21, 2023 - 3:15 p.m.

CVE-2023-27842

2023-03-2115:15:12

Google

osv.dev

cve-2023-27842

remote code execution

extplorer file manager

9.1 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.4%

JSON

Insecure Permissions vulnerability found in Extplorer File manager eXtplorer v.2.1.15 allows a remote attacker to execute arbitrary code via the index.php compenent

CPENameOperatorVersion
extplorereq2.1.15
extplorereq2.1.14
extplorereq2.1.13
extplorereq2.1.11

Name	Operator	Version
extplorer	eq	2.1.15
extplorer	eq	2.1.14
extplorer	eq	2.1.13
extplorer	eq	2.1.11

References

blog.tristaomarinho.com/extplorer-2-1-15-insecure-permissions-following-remote-code-execution/

extplorer.net/

extplorer.net/attachments/download/99/eXtplorer_2.1.15.zip

github.com/tristao-marinho/CVE-2023-27842

github.com/tristao-marinho/CVE-2023-27842/blob/main/README.md