CVE-2025-28367 in mojoPortalالمعلومات

الملخص

بحسب MITRE • 21/04/2025

mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this vulnerability to access the Web.Config file and obtain the MachineKey.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

مسؤول

MITRE

حجز

11/03/2025

إفشاء

21/04/2025

الاعتدال

تمت الموافقة

إدخال

VDB-305787

EPSS

0.02128

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!