mojoPortal v2.7 was discovered to contain a path traversal vulnerability via the "f" parameter at /DesignTools/CssEditor.aspx. This vulnerability allows authenticated attackers to read arbitrary files in the system.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T12:50:02
Updated: 2024-08-03T12:14:39.736Z
Reserved: 2022-09-06T00:00:00
Link: CVE-2022-40123
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-10-03T13:15:11.460
Modified: 2022-10-05T13:01:36.207
Link: CVE-2022-40123
Redhat
No data.