CVE-2023-44962

MEDIUM

Koha Library Software < 23.05.04 - Arbitrary File Read via Cover Image Upload

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-44962. PoCs published by LadyDarwe.

AI-analyzed exploit summary This PoC demonstrates an information leakage vulnerability in Koha's `upload-cover-image.pl` script, where symbolic links in uploaded archives can expose file contents via log entries. The exploit leverages improper handling of symlinks to leak sensitive data like `/etc/passwd`.

Description

File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component.

Exploits (1)

nomisec WORKING POC

by LadyDarwe · poc

https://github.com/LadyDarwe/Links.a

View Code ZIP pw:eip

This PoC demonstrates an information leakage vulnerability in Koha's `upload-cover-image.pl` script, where symbolic links in uploaded archives can expose file contents via log entries. The exploit leverages improper handling of symlinks to leak sensitive data like `/etc/passwd`.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Koha (specific version not specified)

Auth required

Prerequisites: Access to Koha's intranet interface · Ability to upload files · CataloguingLog preference enabled (default)

MITRE ATT&CK

T1005 - Data from Local System T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://github.com/ggb0n/CVE-2023-44962

Scores

CVSS v3 5.3

EPSS 0.0319

EPSS Percentile 87.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

CWE

CWE-434

Status published

Products (1)

koha-community/koha_library_software < 23.05.04

Published Oct 11, 2023

Tracked Since Feb 18, 2026