A vulnerability was found in Simple Art Gallery 1.0. It has been declared as critical. This vulnerability affects the function sliderPicSubmit of the file adminHome.php. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-223126 is the identifier assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/0xxtoby/Vuldb/blob/main/SIMPLE%20ART%20GALLERY%20system%20has%20a%20file%20upload%20(RCE)%20vulnerability.pdf | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.223126 | Third Party Advisory |
https://vuldb.com/?id.223126 | Third Party Advisory |
Configurations
History
12 Mar 2024, 17:34
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:code-projects:simple_art_gallery:1.0:*:*:*:*:*:*:* | |
First Time |
Code-projects simple Art Gallery
Code-projects |
17 Mar 2023, 19:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:a:simple_art_gallery_project:simple_art_gallery:1.0:*:*:*:*:*:*:* | |
References | (MISC) https://vuldb.com/?ctiid.223126 - Third Party Advisory | |
References | (MISC) https://vuldb.com/?id.223126 - Third Party Advisory | |
References | (MISC) https://github.com/0xxtoby/Vuldb/blob/main/SIMPLE%20ART%20GALLERY%20system%20has%20a%20file%20upload%20(RCE)%20vulnerability.pdf - Exploit, Third Party Advisory |
15 Mar 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-15 16:15
Updated : 2024-05-17 02:18
NVD link : CVE-2023-1415
Mitre link : CVE-2023-1415
CVE.ORG link : CVE-2023-1415
JSON object : View
Products Affected
code-projects
- simple_art_gallery
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type