Medium severity4.3NVD Advisory· Published Apr 15, 2023· Updated Jun 17, 2026
CVE-2023-2101
CVE-2023-2101
Description
A vulnerability, which was classified as problematic, has been found in moxi624 Mogu Blog v2 up to 5.2. This issue affects the function uploadPictureByUrl of the file /mogu-picture/file/uploadPicsByUrl. The manipulation of the argument urlList leads to absolute path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-226109 was assigned to this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=5.2
- moxi624/Mogu Blog v2v5Range: 5.0
Patches
Vulnerability mechanics
References
4- github.com/c3p0ooo-Yiqiyin/mogu_blog_v2/blob/main/README.mdnvdExploitThird Party Advisory
- github.com/moxi624/mogu_blog_v2/issues/97nvdExploitIssue TrackingThird Party Advisory
- vuldb.comnvdPermissions RequiredThird Party Advisory
- vuldb.comnvdThird Party Advisory
News mentions
0No linked articles in our index yet.