CVE-2023-6853

Summary

CVE-2023-6853 is a critical vulnerability affecting the kalcaddle KodExplorer up to version 4.51.03. This issue lies in the function index of the file plugins/officeLive/app.php, which can be exploited through server-side request forgery by manipulating the argument path. The attack can be carried out remotely, and the exploit has been made public, posing a significant risk. To mitigate this vulnerability, it is recommended to upgrade to version 4.52.01, with the patch identifier 5cf233f7556b442100cf67b5e92d57ceabb126c6. The Common Vulnerabilities and Exposures Project has assigned the identifier VDB-248221 to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.