6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.4%
Craft CMS before 2.6.2976 does not properly restrict viewing the contents of files in the craft/app/ folder.
craft/app/
craftcms.com/changelog#2-6-2976
github.com/craftcms/cms
nvd.nist.gov/vuln/detail/CVE-2017-8383
twitter.com/CraftCMS/status/857743080224473088