Unrated severityNVD Advisory· Published Sep 1, 2020· Updated Aug 4, 2024
CVE-2020-23971
CVE-2020-23971
Description
gmapfp.org Joomla Component GMapFP J3.30pro is affected by Insecure Permissions. An attacker can access the upload function without authenticating to the application and also can upload files due the issues of unrestricted file uploads which can be bypassed by changing the content-type and name file too double extensions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- gmapfp.org/GMapFPdescription
Patches
Vulnerability mechanics
References
1- packetstormsecurity.com/files/156889/Joomla-GMapFP-3.30-Arbitrary-File-Upload.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.