Lucene search

K
osvGoogleOSV:CVE-2023-7040
HistoryDec 21, 2023 - 8:15 p.m.

CVE-2023-7040

2023-12-2120:15:08
Google
osv.dev
5
cve-2023-7040
path traversal
remote attack
vdb-248689
file manager

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

27.5%

A vulnerability classified as problematic was found in codelyfe Stupid Simple CMS up to 1.2.4. Affected by this vulnerability is an unknown functionality of the file /file-manager/rename.php. The manipulation of the argument oldName leads to path traversal: β€˜β€¦/filedir’. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-248689 was assigned to this vulnerability.

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

27.5%

Related for OSV:CVE-2023-7040