CVE-2023-27179

EPSS 85.77% · P99 Updated Feb 11, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-27179

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

GDidees CMS 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GDidees CMS是GDidees公司的一个建站系统。 GDidees CMS v3.9.1版本及之前版本存在安全漏洞，该漏洞源于通过/_admin/imgdownload.php的filename参数发现包含任意文件下载漏洞。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-27179

#	POC Description	Source Link	Shenlong Link
1	GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-27179.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-27179

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-04-11 · 44 CVEs total

CVE-2023-26122	8.8 HIGH	safe-eval 安全漏洞
CVE-2023-26121	7.5 HIGH	safe-eval 安全漏洞
CVE-2023-26917		libyang 代码问题漏洞
CVE-2023-25413		ATEN International PE8108 安全漏洞
CVE-2023-26847		OpenCats 跨站脚本漏洞
CVE-2023-26964		hyper 安全漏洞
CVE-2023-27645		POWERAMP 安全漏洞
CVE-2023-28340		Zoho ManageEngine Applications Manager 代码问题漏洞
CVE-2023-28341		Zoho ManageEngine Applications Manager 跨站脚本漏洞
CVE-2023-29492		Novi Survey 代码注入漏洞
CVE-2023-27192		DUALSPACE Super Secuirty 安全漏洞
CVE-2023-26845		OpenCats 跨站请求伪造漏洞
CVE-2023-26554		NTP 缓冲区错误漏洞
CVE-2023-26553		NTP 缓冲区错误漏洞
CVE-2023-26552		NTP 缓冲区错误漏洞
CVE-2023-26551		NTP 缓冲区错误漏洞
CVE-2023-26260		Oxid Esales OXID eShop 安全漏洞
CVE-2023-25415		ATEN International PE8108 安全漏洞
CVE-2023-25414		ATEN International PE8108 安全漏洞
CVE-2023-29576		Bento4 缓冲区错误漏洞

Showing top 20 of 44 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-27179

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-27179

I. Basic Information for CVE-2023-27179

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2023-27179

III. Intelligence Information for CVE-2023-27179

Same Patch Batch · n/a · 2023-04-11 · 44 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-27179

Leave a comment