Lucene search
PatchstackVULNRICHMENT:CVE-2023-38388HistoryMar 26, 2024 - 8:39 p.m.
CVE-2023-38388 WordPress Jupiter X Core plugin <= 3.3.5 - Unauth. Arbitrary File Upload vulnerability
2024-03-2620:39:51
CWE-434
Patchstack
github.com
9
wordpress
jupiterx core
file upload
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
6.9
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Unrestricted Upload of File with Dangerous Type vulnerability in Artbees JupiterX Core.This issue affects JupiterX Core: from n/a through 3.3.5.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:artbees:jupiter_x_core:*:*:*:*:*:wordpress:*:*"
],
"vendor": "artbees",
"product": "jupiter_x_core",
"versions": [
{
"status": "affected",
"version": "0",
"versionType": "custom",
"lessThanOrEqual": "3.3.5"
}
],
"defaultStatus": "unaffected"
}
]Related
cve
cve
CVE-2023-38388
2024-03-26 21:15:51
cvelist
cvelist
nvd
nvd
CVE-2023-38388
2024-03-26 21:15:51
githubexploit
githubexploit
Exploit for CVE-2023-38388
2023-08-26 05:51:06
Exploit for Incorrect Authorization in Artbees Jupiter X Core
2023-08-27 00:30:16
wpvulndb
wpvulndb
Jupiter X Core Premium < 3.3.8 - Unauthenticated Arbitrary File Upload
2023-08-24 00:00:00
wordfence
wordfence
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
6.9
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2023-38388