CVE-2025-28367 in mojoPortalinformação

Sumário

de MITRE • 21/04/2025

mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this vulnerability to access the Web.Config file and obtain the MachineKey.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsável

MITRE

Reservar

11/03/2025

Divulgação

21/04/2025

Moderação

aceite

Entrada

VDB-305787

CPE

pronto

EPSS

0.02128

KEV

não

Atividades

muito baixo

Fontes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!