CVE-2022-23409

MEDIUM

ethercreative/logs < 3.0.4 - Path Traversal via actionStream in Controller.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-23409. PoCs published by ub3rsick.

AI-analyzed exploit summary This is a detailed technical writeup of CVE-2022-23409, an authenticated path traversal vulnerability in the Ethercreative Logs plugin for Craft CMS. It includes root cause analysis, patch details, and a proof-of-concept request demonstrating arbitrary file read via the `log` parameter.

Description

The Logs plugin before 3.0.4 for Craft CMS allows remote attackers to read arbitrary files via input to actionStream in Controller.php.

Exploits (1)

exploitdb WRITEUP
by ub3rsick · textwebappsmultiple
https://www.exploit-db.com/exploits/52241

This is a detailed technical writeup of CVE-2022-23409, an authenticated path traversal vulnerability in the Ethercreative Logs plugin for Craft CMS. It includes root cause analysis, patch details, and a proof-of-concept request demonstrating arbitrary file read via the `log` parameter.

Classification
Writeup 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Ethercreative Logs plugin for Craft CMS <=3.0.3
Auth required
Prerequisites: Authenticated admin access to Craft CMS · Valid identity cookie
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory x_refsource_misc
https://sec-consult.com/vulnerability-lab/
Product, Third Party Advisory x_refsource_misc
https://plugins.craftcms.com/logs
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/165706/Ethercreative-Logs-3.0.3-Path-Traversal.html

Scores

CVSS v3 4.9
EPSS 0.0641
EPSS Percentile 91.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (2)
ether/logs 0 - 3.0.4Packagist
ethercreative/logs < 3.0.4
Published Jan 31, 2022
Tracked Since Feb 18, 2026