Vulnerabilities > CVE-2017-8383 - Unspecified vulnerability in Craftcms Craft CMS

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
craftcms
NVD
Published: 2017-05-01
Updated: 2019-10-03

Summary

Craft CMS before 2.6.2976 does not properly restrict viewing the contents of files in the craft/app/ folder.

Vulnerable Configurations

Part Description Count
Application
Craftcms
476

References