Vulnerabilities > CVE-2023-3800 - Unspecified vulnerability in Wolfcode Easyadmin8 2.0.2.2

CVSS 6.6 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

wolfcode

NVD

Published: 2023-07-20

Updated: 2024-11-21

Summary

A vulnerability was found in EasyAdmin8 2.0.2.2. It has been classified as problematic. Affected is an unknown function of the file /admin/index/index.html#/admin/mall.goods/index.html of the component File Upload Module. The manipulation leads to unrestricted upload. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-235068. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerable Configurations

Part	Description	Count
Application	Wolfcode Wolfcode Easyadmin8 2.0.2.2	1

References

https://github.com/wolf-leo/EasyAdmin8/issues/1
https://github.com/wolf-leo/EasyAdmin8/issues/1
https://vuldb.com/?ctiid.235068
https://vuldb.com/?ctiid.235068
https://vuldb.com/?id.235068
https://vuldb.com/?id.235068