7.5

CVSSv3

Published: 11/04/2023 Updated: 17/04/2023

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 0

Subscribe to Gdidees Cms

GDidees CMS v3.9.1 and lower exists to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gdidees gdidees cms

Check Point Reference: CPAI-2023-1494 Date Published: 5 Feb 2024 Severity: High ...

GDidees CMS version 391 suffers from file disclosure and directory traversal vulnerabilities ...

CWE-434 https://knowledge-base.secureflag.com/vulnerabilities/unrestricted_file_download/unrestricted_file_download_vulnerability.html https://www.gdidees.eu/cms-1-0.html https://gist.github.com/Hadi999/516aa25b953b0cba57089a0c11b1305b http://packetstormsecurity.com/files/171894/GDidees-CMS-3.9.1-Local-File-Disclosure-Directory-Traversal.html https://nvd.nist.gov https://packetstormsecurity.com/files/171894/GDidees-CMS-3.9.1-Local-File-Disclosure-Directory-Traversal.html https://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2023-1494.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook