CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-40123

mojoPortal v2.7 was discovered to contain a path traversal vulnerability via the "f" parameter at /DesignTools/CssEditor.aspx. This vulnerability allows authenticated attackers to read arbitrary files in the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.5%

CVSS Severity

CVSS v3 Score 6.5

References

http://mojoportal.com
https://weed-1.gitbook.io/cve/mojoportal/directory-traversal-in-mojoportal-v2.7-cve-2022-40123
http://mojoportal.com
https://weed-1.gitbook.io/cve/mojoportal/directory-traversal-in-mojoportal-v2.7-cve-2022-40123

Products affected by CVE-2022-40123

Mojoportal » Mojoportal » Version: 2.7.0.0

cpe:2.3:a:mojoportal:mojoportal:2.7.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-40123

Products

Pricing

Contact Us