{"api_version":"1","generated_at":"2026-04-23T05:58:25+00:00","cve":"CVE-2023-2453","urls":{"html":"https://cve.report/CVE-2023-2453","api":"https://cve.report/api/cve/CVE-2023-2453.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2023-2453","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2023-2453"},"summary":{"title":"CVE-2023-2453","description":"There is insufficient sanitization of tainted file names that are directly concatenated with a path that is subsequently passed to a ‘require_once’ statement. This allows arbitrary files with the ‘.php’ extension for which the absolute path is known to be included and executed. There are no known means in PHPFusion through which an attacker can upload and target a ‘.php’ file payload.","state":"PUBLIC","assigner":"disclosure@synopsys.com","published_at":"2023-09-05 15:15:00","updated_at":"2023-09-08 17:27:00"},"problem_types":["CWE-829"],"metrics":[],"references":[{"url":"https://www.synopsys.com/blogs/software-security/cyrc-vulnerability-advisory-cve-2023-2453/","name":"https://www.synopsys.com/blogs/software-security/cyrc-vulnerability-advisory-cve-2023-2453/","refsource":"MISC","tags":[],"title":"CyRC Vulnerability Advisory: CVE-2023-2453 Local File Inclusion in Forum Infusion and CVE-2023-4480 Arbitrary File Read in Fusion File Manager | Synopsys","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.cve.org/CVERecord?id=CVE-2023-2453","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2453","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2023","cve_id":"2453","vulnerable":"1","versionEndIncluding":"9.10.30","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"php-fusion","cpe5":"phpfusion","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[{"cve":"CVE-2023-2453","qid":"730954","title":"Fusion Hypertext Preprocessor (PHP) Local File Inclusion in Forum Infusion Vulnerability"}]},"source_records":{"cve_program":{"data_version":"4.0","data_type":"CVE","data_format":"MITRE","CVE_data_meta":{"ID":"CVE-2023-2453","ASSIGNER":"disclosure@synopsys.com","STATE":"PUBLIC"},"description":{"description_data":[{"lang":"eng","value":"There is insufficient sanitization of tainted file names that are directly concatenated with a path that is subsequently passed to a ‘require_once’ statement. This allows arbitrary files with the ‘.php’ extension for which the absolute path is known to be included and executed. There are no known means in PHPFusion through which an attacker can upload and target a ‘.php’ file payload."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-829 Inclusion of Functionality from Untrusted Control Sphere","cweId":"CWE-829"}]}]},"affects":{"vendor":{"vendor_data":[{"vendor_name":"PHPFusion","product":{"product_data":[{"product_name":"PHPFusion","version":{"version_data":[{"version_value":"not down converted","x_cve_json_5_version_data":{"versions":[{"lessThanOrEqual":"9.10.30","status":"affected","version":"0","versionType":"custom"}],"defaultStatus":"affected"}}]}}]}}]}},"references":{"reference_data":[{"url":"https://www.synopsys.com/blogs/software-security/cyrc-vulnerability-advisory-cve-2023-2453/","refsource":"MISC","name":"https://www.synopsys.com/blogs/software-security/cyrc-vulnerability-advisory-cve-2023-2453/"}]},"generator":{"engine":"Vulnogram 0.1.0-dev"},"source":{"discovery":"EXTERNAL"},"work_around":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"\n\n<span style=\"background-color: rgb(255, 255, 255);\">Disabling the “Forum” Infusion through the admin panel removes the endpoint through which this vulnerability is exploited, and so prevents the issue. If the “Forum” Infusion cannot be disabled, technologies such as a web application firewall may help to mitigate exploitation attempts.</span><span style=\"background-color: rgb(255, 255, 255);\">&nbsp;</span>\n\n<br>"}],"value":"\nDisabling the “Forum” Infusion through the admin panel removes the endpoint through which this vulnerability is exploited, and so prevents the issue. If the “Forum” Infusion cannot be disabled, technologies such as a web application firewall may help to mitigate exploitation attempts. \n\n\n"}],"credits":[{"lang":"en","value":"Matthew Hogg"}],"impact":{"cvss":[{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}]}},"nvd":{"publishedDate":"2023-09-05 15:15:00","lastModifiedDate":"2023-09-08 17:27:00","problem_types":["CWE-829"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":8.8,"baseSeverity":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:php-fusion:phpfusion:*:*:*:*:*:*:*:*","versionEndIncluding":"9.10.30","cpe_name":[]}]}]}},"legacy_mitre":{"record":null,"notes":[]}}}