juzaweb CMS Access Control Vulnerability in Media Page Component

Vulnerability

A critical vulnerability affecting juzaweb CMS versions through 3.4.2 has been identified. The issue arises from improper access controls in the Media Page component, specifically within the file /admin-cp/media. This vulnerability allows for unauthorized access and manipulation, and can be exploited remotely.

Impact

Exploitation of this vulnerability allows for unauthorized users to gain access to and modify the media page, potentially leading to further unauthorized actions within the CMS.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

6.8

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

6.8

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

juzaweb CMS Access Control Vulnerability in Media Page Component

Vulnerability

Impact

Affected Products

juzaweb CMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating