CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-1398

A vulnerability classified as critical was found in XiaoBingBy TeaCMS 2.0. Affected by this vulnerability is an unknown functionality of the file /admin/upload. The manipulation leads to path traversal: '../filedir'. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222985 was assigned to this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.2%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 6.5

References

https://gitee.com/xiaobingby/TeaCMS/issues/I6IIYV
https://vuldb.com/?ctiid.222985
https://vuldb.com/?id.222985
https://gitee.com/xiaobingby/TeaCMS/issues/I6IIYV
https://vuldb.com/?ctiid.222985
https://vuldb.com/?id.222985

Products affected by CVE-2023-1398

Teacms Project » Teacms » Version: 2.0

cpe:2.3:a:teacms_project:teacms:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-1398

Products

Pricing

Contact Us