Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-27842

Insecure Permissions vulnerability found in Extplorer File manager eXtplorer v.2.1.15 allows a remote attacker to execute arbitrary code via the index.php compenent

Published

2023-03-21T15:15:12.413

Last Modified

2025-02-26T18:15:12.810

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo
Type: Secondary
CWE-277

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	extplorer	extplorer	2.1.15	Yes

References

http://blog.tristaomarinho.com/extplorer-2-1-15-insecure-permissions-following-remote-code-execution/ Exploit, Third Party Advisory ([email protected])
http://extplorer.net/ Product ([email protected])
http://extplorer.net/attachments/download/99/eXtplorer_2.1.15.zip Product ([email protected])
https://github.com/tristao-marinho/CVE-2023-27842 Exploit, Third Party Advisory ([email protected])
https://github.com/tristao-marinho/CVE-2023-27842/blob/main/README.md Exploit, Third Party Advisory ([email protected])
http://blog.tristaomarinho.com/extplorer-2-1-15-insecure-permissions-following-remote-code-execution/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://extplorer.net/ Product (af854a3a-2127-422b-91ae-364da2661108)
http://extplorer.net/attachments/download/99/eXtplorer_2.1.15.zip Product (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/tristao-marinho/CVE-2023-27842 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/tristao-marinho/CVE-2023-27842/blob/main/README.md Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)