CVE-2023-39141
HIGH NUCLEIwebui-aria2 <4fe2 - Path Traversal
Title source: llmDescription
webui-aria2 commit 4fe2e was discovered to contain a path traversal vulnerability.
Exploits (2)
github
WORKING POC
2 stars
by Pr0t0c01 · pythonpoc
https://github.com/Pr0t0c01/CVEs/tree/main/Aria2_WebUI_CVE-2023-39141
nomisec
WORKING POC
by MartiSabate · poc
https://github.com/MartiSabate/CVE-2023-39141-LFI-enumerator
Nuclei Templates (1)
Aria2 WebUI - Path traversal
HIGHVERIFIEDby DhiyaneshDk
Shodan:
title:"Aria2 WebUI" || http.title:"aria2 webui"
FOFA:
title="aria2 webui"
Scores
CVSS v3
7.5
EPSS
0.8559
EPSS Percentile
99.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-22
Status
published
Products (2)
npm/webui-aria2
0npm
ziahamza/webui-aria2
Published
Aug 22, 2023
Tracked Since
Feb 18, 2026