Login Sign Up

CVE-2023-47473

7.5 HIGH

📋 TL;DR

This CVE describes a directory traversal vulnerability in fuwushe.org iFair software versions 23.8_ad0 and earlier. Attackers can exploit this vulnerability to read arbitrary files on the server by crafting malicious scripts. Organizations using affected iFair versions are at risk of sensitive information disclosure.

💻 Affected Systems

Products:
  • fuwushe.org iFair
Versions: 23.8_ad0 and earlier
Operating Systems: Any OS running iFair
Default Config Vulnerable: ⚠️ Yes
Notes: All deployments of affected versions are vulnerable by default.

📦 What is this software?

Ifair by Fuwushe

View all CVEs affecting Ifair →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete server compromise through reading sensitive configuration files, credentials, or system files leading to further attacks.

🟠

Likely Case

Unauthorized access to sensitive business data, configuration files, or user information stored on the server.

🟢

If Mitigated

Limited impact with proper file permissions and network segmentation preventing access to critical system files.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Public proof-of-concept documentation exists showing exploitation techniques.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Check vendor website for updates or consider alternative software.

🔧 Temporary Workarounds

Input Validation Filter

all

Implement strict input validation to block directory traversal sequences like ../, ..\, and absolute paths

Implement server-side validation to sanitize all user inputs before processing

File Access Restriction

all

Configure web server to restrict file access to specific directories only

Configure web server (Apache/Nginx/IIS) to deny access to parent directories

🧯 If You Can't Patch

  • Implement web application firewall (WAF) rules to block directory traversal patterns
  • Restrict network access to iFair instances using firewall rules and network segmentation

🔍 How to Verify

Check if Vulnerable:

Test if the application allows accessing files outside web root using traversal sequences like ../../etc/passwd

Check Version:

Check iFair version in application interface or configuration files

Verify Fix Applied:

Verify that traversal attempts return access denied errors and cannot read files outside intended directories

📡 Detection & Monitoring

Log Indicators:

  • Multiple failed attempts to access files with ../ patterns
  • Successful access to files outside web root directory

Network Indicators:

  • HTTP requests containing ../, ..\, or absolute file paths in parameters

SIEM Query:

web.url:*../* OR web.uri:*../* OR http.request.uri:*../*

📊 Metadata

CVE ID: CVE-2023-47473
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-22
Published: January 3, 2024
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-47473, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)