CVE-2025-28367 in mojoPortal
Sumário
de MITRE • 21/04/2025
mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this vulnerability to access the Web.Config file and obtain the MachineKey.
If you want to get best quality of vulnerability data, you may have to visit VulDB.