CVE-2023-28731

Exploit

EPSS 2.07%
Published 30.03.2023 12:15:07
Last modified 21.11.2024 07:55:53
Source vulnerability@ncsc.ch
Teams watchlist Login
Open Login

AnyMailing Joomla Plugin is vulnerable to unauthenticated remote code execution, when being granted access to the campaign's creation on front-office due to unrestricted file upload allowing PHP code to be injected. 



This issue affects AnyMailing Joomla Plugin Enterprise in versions below 8.3.0.

Affected products Warnungen 0 Metrics 3 CWE 2 References 5

Data is provided by the National Vulnerability Database (NVD)

Acymailing ≫ Acymailing SwPlatformjoomla! Version < 8.3.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.07%	0.829

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulnerability@ncsc.ch	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://www.acymailing.com/change-log/

Release Notes

https://www.bugbounty.ch/advisories/CVE-2023-28731

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2023-28731

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-28731

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-28731

EUVD