CVE-2023-5227

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 30, 2023

Updated: Oct 2, 2023

CWE ID 787

Summary

CVE-2023-5227 is a vulnerability affecting the GitHub repository thorsten/phpmyfaq prior to version 3.1.8. An attacker was able to exploit this weakness by uploading a dangerous file type unrestrictedly, potentially leading to code injection or other malicious activities. This issue could allow unauthorized users to execute arbitrary code, posing a serious risk to the integrity and security of affected systems. It is strongly recommended that users update their repository to the latest version as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t-hsC1
https://www.cve.org/CVERecord?id=CVE-2023-5227
https://nvd.nist.gov/vuln/detail/CVE-2023-5227

Back to Vulnerability Database

CVE-2023-5227

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations