2 matches found
CVE-2023-2101
creationtimestamp| type| source ---|---|--- 2023-04-15 16:26:36+00:00| seen| https://t.me/cibsecurity/62223...
CVE-2023-2101
The CVE-2023-2101 entry concerns moxi624 Mogu Blog v2 up to 5.2, where the function uploadPictureByUrl (file /mogu-picture/file/uploadPicsByUrl) is vulnerable. The issue arises from manipulating the urlList argument, causing absolute path traversal. This may be exploited remotely, and public disc...