Vulnerabilities > CVE-2023-27842 - Unspecified vulnerability in Extplorer 2.1.15

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

extplorer

NVD

Published: 2023-03-21

Updated: 2023-03-27

Summary

Insecure Permissions vulnerability found in Extplorer File manager eXtplorer v.2.1.15 allows a remote attacker to execute arbitrary code via the index.php compenent

Vulnerable Configurations

Part	Description	Count
Application	Extplorer Extplorer Extplorer 2.1.15	1

References

http://extplorer.net/
http://blog.tristaomarinho.com/extplorer-2-1-15-insecure-permissions-following-remote-code-execution/
https://github.com/tristao-marinho/CVE-2023-27842/blob/main/README.md
http://extplorer.net/attachments/download/99/eXtplorer_2.1.15.zip
https://github.com/tristao-marinho/CVE-2023-27842