CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-52044

Studio-42 eLfinder 2.1.62 is vulnerable to Remote Code Execution (RCE) as there is no restriction for uploading files with the .php8 extension.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.0%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/Studio-42/elFinder/issues/3615

Products affected by CVE-2023-52044

Std42 » Elfinder » Version: 2.1.62

cpe:2.3:a:std42:elfinder:2.1.62

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved