3 matches found
mojoPortal <=2.9.0.1 - Directory Traversal
mojoPortal =2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this vulnerability to access the Web.Config file and obtain the MachineKey. id: CVE-2025-28367 info: name: mojoPortal =2.9.0.1 - Directory Traversal author...
CVE-2025-28367
creationtimestamp| type| source ---|---|--- 2025-04-21 18:59:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lndtv7gvng2c 2025-04-21 19:49:41+00:00| seen| https://t.me/cvedetector/23453 2025-04-22 05:44:47+00:00| confirmed|...
CVE-2025-28367
mojoPortal =2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this vulnerability to access the Web.Config file and obtain the MachineKey...