CVE-2020-23972

{"id": "CVE-2020-23972", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-08-27T14:15:09.837", "references": [{"url": "http://packetstormsecurity.com/files/159072/Joomla-GMapFP-J3.5-J3.5F-Arbitrary-File-Upload.html", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://raw.githubusercontent.com/me4yoursecurity/Reports/master/README.md", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://packetstormsecurity.com/files/159072/Joomla-GMapFP-J3.5-J3.5F-Arbitrary-File-Upload.html", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://raw.githubusercontent.com/me4yoursecurity/Reports/master/README.md", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-434"}]}], "descriptions": [{"lang": "en", "value": "In Joomla Component GMapFP Version J3.5 and J3.5free, an attacker can access the upload function without authenticating to the application and can also upload files which due to issues of unrestricted file uploads which can be bypassed by changing the content-type and name file too double extensions."}, {"lang": "es", "value": "En Joomla Component GMapFP Versiones J3.5 y J3.5free, un atacante puede acceder a la funci\u00f3n upload sin autenticarse en la aplicaci\u00f3n y tambi\u00e9n puede cargar archivos que debido a problemas de carga de archivos sin restricciones pueden ser omitidos al cambiar el content-type y demasiadas extensiones dobles del archivo de nombre"}], "lastModified": "2024-11-21T05:14:16.273", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gmapfp:gmapfp:j3.5:*:*:*:-:joomla\\!:*:*", "vulnerable": true, "matchCriteriaId": "206BF877-9885-4214-BF6B-020D2F765687"}, {"criteria": "cpe:2.3:a:gmapfp:gmapfp:j3.5:*:*:*:free:joomla\\!:*:*", "vulnerable": true, "matchCriteriaId": "A9DF3EBC-F7DD-4584-96AA-51399E27280B"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}