CVE-2023-7335

HIGH EXPLOITED

EduSoho < 22.4.7 - Unauthenticated Arbitrary File Read via Classroom-Course-Statistics Export

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2023-7335 has been observed exploited in the wild (reported by VulnCheck KEV).

Description

EduSoho versions prior to 22.4.7 contain an arbitrary file read vulnerability in the classroom-course-statistics export functionality. A remote, unauthenticated attacker can supply crafted path traversal sequences in the fileNames[] parameter to read arbitrary files from the server filesystem, including application configuration files such as config/parameters.yml that may contain secrets and database credentials. Exploitation evidence was observed by the Shadowserver Foundation on 2026-01-19 (UTC).

References (8)

Core 8
Core References
Various Sources product
https://www.edusoho.com/
Various Sources technical-description exploit
https://cn-sec.com/archives/2451582.html
Various Sources technical-description exploit
https://blog.csdn.net/qq_41904294/article/details/135007351
Various Sources government-resource vdb-entry
https://www.cnvd.org.cn/flaw/show/CNVD-2023-03903

Scores

CVSS v4 8.7
EPSS 0.0074
EPSS Percentile 49.7%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

VulnCheck KEV 2026-01-22
CWE
CWE-22
Status published
Products (1)
Hangzhou Kuozhi Network Technology Co., Ltd./EduSoho < 22.4.7
Published Jan 22, 2026
Tracked Since Feb 18, 2026