Vulnerability detail
Enriched intelligence for a single CVE
Medium
CVE-2023-23752
PUBLISHED[20230201] - Core - Improper access check in webservice endpoints
- Vendor
- Joomla! Project
- Product
- Joomla! CMS
- Published
- Feb 16, 2023
- EPSS
- —
Description
An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints.
CVSS scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitation status
Exploited in the wild
Recorded 2024-01-08 00:00:00 UTC · Source
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- partial
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Jan 08, 2024 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-23752.yaml | Apr 25, 2025 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
github · Created 2024-05-05 16:16:03 UTC · 5 stars
github · Created 2024-04-11 13:39:44 UTC · 2 stars
github · Created 2024-03-12 10:59:10 UTC · 3 stars
CVE-2023-23752 Data Extractor
github · Created 2023-12-20 20:20:15 UTC · 0 stars
Mass Scanner for CVE-2023-23752
github · Created 2023-12-04 13:05:08 UTC · 10 stars
A PoC exploit for CVE-2023-23752 - Joomla Improper Access Check in Versions 4.0.0 through 4.2.7
github · Created 2023-12-01 02:25:04 UTC · 4 stars
This Python implementation serves an educational purpose by demonstrating the exploitation of CVE-2023-23752. The code provides insight into the vulnerability's exploitation.
github · Created 2023-11-28 16:08:16 UTC · 3 stars
CVE-2023-23752
github · Created 2023-04-09 13:20:48 UTC · 34 stars
Perform With Mass Exploiter In Joomla 4.2.8.
github · Created 2023-03-26 13:58:14 UTC · 5 stars
github · Created 2023-03-25 06:18:46 UTC · 4 stars
Joomla Unauthorized Access Vulnerability (CVE-2023-23752) Dockerized
github · Created 2023-03-24 11:50:16 UTC · 83 stars
Joomla! < 4.2.8 - Unauthenticated information disclosure
github · Created 2023-03-09 07:42:03 UTC · 8 stars
Bulk scanner + get config from CVE-2023-23752
github · Created 2023-03-07 12:32:17 UTC · 0 stars
github · Created 2023-03-01 15:28:24 UTC · 12 stars
Joomla 未授权访问漏洞 CVE-2023-23752
github · Created 2023-02-24 01:33:55 UTC · 16 stars
simple program for joomla CVE-2023-23752 scanner for pentesting and educational purpose
github · Created 2023-02-23 04:37:31 UTC · 3 stars
CVE-2023-23752 Joomla 未授权访问漏洞 poc
github · Created 2023-02-20 10:30:17 UTC · 3 stars
Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints.
github · Created 2023-02-18 12:19:24 UTC · 2 stars
CVE-2023-23752 nuclei template
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel
-
Detected by Nuclei