CVE-2025-28367

mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this...

Basic Information

CVE State: PUBLISHED
Reserved Date: March 11, 2025
Published Date: April 21, 2025
Last Updated: April 21, 2025
Vendor: n/a
Product: n/a
Description: mojoPortal <=2.9.0.1 is vulnerable to Directory Traversal via BetterImageGallery API Controller - ImageHandler Action. An attacker can exploit this vulnerability to access the Web.Config file and obtain the MachineKey.
Tags

CVSS Scores

CVSS v3.1

6.5 - MEDIUM

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

EPSS Score

Score: 8.94% (Percentile: 92.09%) as of 2025-04-25

SSVC Information

Exploitation: poc
Technical Impact: partial

Exploit Status

Exploited in the Wild: Yes (2025-10-09 00:00:00 UTC) Source

References

https://github.com/i7MEDIA/mojoportal https://www.0xlanks.me/blog/cve-2025-28367-advisory/

Known Exploited Vulnerability Information

Source	Added Date
The Shadowserver (via CIRCL)	2025-10-09 00:00:00 UTC

Scanner Integrations

Scanner	URL	Date Detected
Nuclei	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-28367.yaml	2025-04-25 00:00:00 UTC

Timeline

CVE ID Reserved

March 11, 2025
CVE Published to Public

April 21, 2025
Detected by Nuclei

April 25, 2025
Added to KEVIntel

October 09, 2025