CVSS 3.1 Score 6.3 of 10 (medium)


Published Dec 21, 2023
Updated: Mar 21, 2024
CWE ID 918


CVE-2023-7037 is a critical vulnerability found in automad up to version 1.10.9. The vulnerability affects the import function of the FileController.php file, allowing for server-side request forgery. This vulnerability can be exploited remotely, posing a potential danger to organizations using affected versions of automad. The vendor has been notified but has not responded, and the exploit has been disclosed publicly. To remediate this vulnerability, users should update to a patched version of automad.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-7037 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options