CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-36299

A File Upload vulnerability in typecho v.1.2.1 allows a remote attacker to execute arbitrary code via the upload and options-general parameters in index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.088

EPSS Ranking 92.1%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/MentalityXt/typecho-v1.2.1-RCE
https://github.com/typecho/typecho/releases/tag/v1.2.1
https://github.com/MentalityXt/typecho-v1.2.1-RCE
https://github.com/typecho/typecho/releases/tag/v1.2.1

Products affected by CVE-2023-36299

Typecho » Typecho » Version: 1.2.1

cpe:2.3:a:typecho:typecho:1.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-36299

Products

Pricing

Contact Us