Exploit for #VU72333 Improper access control in Joomla!

Published: 2023-03-09 | Updated: 2024-04-26

Vulnerability identifier: #VU72333

Vulnerability risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:H/RL:O/RC:C]

CVE-ID: CVE-2023-23752

CWE-ID: CWE-284

Exploitation vector: Network

Exploits in database: 10

April 26, 2024
- CVE-2023-23752 (Joomla Unauthenticated Information Disclosure (CVE-2023-23752) exploit) [Github]
February 27, 2024
- CVE-2023-23752-EXPLOIT (A PoC exploit for CVE-2023-23752 - Joomla Improper Access Check in Versions 4.0.0 through 4.2.7) [Github]
February 21, 2024
- CVE-2023-23752 (Joomla! < 4.2.8 - Unauthenticated information disclosure exploit) [Github]
January 7, 2024
- CVE-2023-23752 (Perform With Mass Exploiter In Joomla 4.2.8.) [Github]
December 18, 2023
- CVE-2023-23752 (An access control flaw was identified, potentially leading to unauthorized access to critical webservice endpoints within Joomla! CMS versions 4.0.0 through 4.2.7. This vulnerability could be exploited by attackers to gain unauthorized acc [Github]
April 27, 2023
- CVE-2023-23752 (Perform With Mass Exploiter In Joomla 4.2.8.) [Github]
April 21, 2023
- Joomla API Improper Access Checks [Metasploit]
April 13, 2023
- Radiance (RADIANCE is an exploit for CVE-2023-23752) [Github]
March 25, 2023
- exploit-CVE-2023-23752 (Joomla! < 4.2.8 - Unauthenticated information disclosure) [Github]
March 9, 2023
- CVE-2023-23752 (Bulk scanner + get config from CVE-2023-23752) [Github]

Impact: Information disclosure and data manipulation

Vulnerable software:
Joomla!
Web applications / CMS

Vendor: Joomla!