๐Ÿ” CVE Alert

CVE-2023-23752

MEDIUM 5.3 โš ๏ธ CISA KEV

[20230201] - Core - Improper access check in webservice endpoints

CVSS Score
5.3
EPSS Score
0.0%
EPSS Percentile
0th

An issue was discovered in Joomla! 4.0.0 through 4.2.7. An improper access check allows unauthorized access to webservice endpoints.

Vendor joomla! project
Product joomla! cms
Published Feb 16, 2023
Last Updated Feb 26, 2026
โš ๏ธ Actively Exploited โ€” Act Now

Get instant alerts for joomla! project joomla! cms

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2023-23752.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Joomla! Project / Joomla! CMS
4.0.0-4.2.7

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
developer.joomla.org: https://developer.joomla.org/security-centre/894-20230201-core-improper-access-check-in-webservice-endpoints.html cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-23752

Credits

Zewei Zhang from NSFOCUS TIANJI Lab