CVE-2023-7098 | icret EasyImages 2.8.3 app/hide.php key path traversal

Posted by Angelo Barbosa | Dec 24, 2023 | CVE

A vulnerability classified as problematic was found in icret EasyImages 2.8.3. This vulnerability affects unknown code of the file app/hide.php. The manipulation of the argument key leads to path traversal: ‘../filedir’. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability was named CVE-2023-7098. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2023-7098 | icret EasyImages 2.8.3 app/hide.php key path traversal

Related Posts

CVE-2024-22359 | IBM UrbanCode Deploy/DevOps Deploy Web UI cross site scripting (XFDB-280897)

CVE-2023-52344 | Unisoc T760/T770/T820/S8000 modem-ps-nas-ngmm information disclosure

CVE-2023-51717 | Dataiku DSS up to 11.4.4/12.4.0 improper authentication (dsa-2023-010)

CVE-2024-5290 | Canonical wpa_supplicant uncontrolled search path