CVE-2023-1415

CWE-434Unrestricted File Upload3 documents3 sources
Severity
8.8HIGH
EPSS
0.7%
top 27.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Code-projects Simple ART Gallery
Timeline
PublishedMar 15

Description

A vulnerability was found in Simple Art Gallery 1.0. It has been declared as critical. This vulnerability affects the function sliderPicSubmit of the file adminHome.php. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-223126 is the identifier assigned to this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 2.8 | Impact: 3.4

Affected Packages2 packages

CVEListV5simple_art_gallery1.0

🔴Vulnerability Details

2
CVEList
Simple Art Gallery adminHome.php sliderPicSubmit unrestricted upload2023-03-15
GHSA
GHSA-3jqm-6jfp-fcm9: A vulnerability was found in Simple Art Gallery 12023-03-15
CVE-2023-1415 (HIGH CVSS 8.8) | A vulnerability was found in Simple | cvebase.io