CVE-2023-44011
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2023-44011 is a newly disclosed vulnerability in mojoPortal version 2.7.0.0. This issue grants remote attackers the ability to execute arbitrary code through a specially crafted script. The vulnerability is found in the layout.master skin file located within the Skin management component. By exploiting this weakness, an intruder can inject malicious scripts, potentially leading to serious security breaches. This vulnerability poses a significant threat and requires immediate attention, as it allows attackers to gain unauthorized access and manipulate the system. It is strongly recommended that affected users update their mojoPortal installations to the latest, patched version.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.