CVE-2023-37152
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-37152 is a vulnerability affecting the Projectworlds Online Art Gallery Project 1.0. This issue enables unauthenticated users to upload arbitrary files through the adminHome.php page. However, the validity of this vulnerability has been disputed. Regardless, successful exploitation could potentially lead to serious security implications for the affected system. The vulnerability exists due to insufficient input validation, allowing attackers to bypass authentication checks and upload malicious files. Users are advised to apply the necessary security patches or updates as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.