CVE-2023-33518

MEDIUM

emoncms <11 - Info Disclosure

Title source: llm

Description

emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web directory path and other information leaked by the server via a crafted web request.

References (1)

[Exploit, Issue Tracking] https://github.com/emoncms/emoncms/issues/1856

Scores

CVSS v3 5.3

EPSS 0.0007

EPSS Percentile 21.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-203 CWE-668

Status published

Affected Products (1)

emoncms/emoncms

Timeline

Published Jun 05, 2023

Tracked Since Feb 18, 2026