CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31505

An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, allows remote authenticated attackers to execute arbitrary code and obtain sensitive information via a crafted .phtml file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.7%

CVSS Severity

CVSS v3 Score 7.2

References

https://m3n0sd0n4ld.github.io/patoHackventuras/cve-2023-31505
https://m3n0sd0n4ld.github.io/patoHackventuras/cve-2023-31505

Products affected by CVE-2023-31505

Schlix » Cms » Version: 2.2.8-1

cpe:2.3:a:schlix:cms:2.2.8-1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31505

Products

Pricing

Contact Us