{"id":"CVE-2023-47321","details":"Silverpeas Core 6.3.1 is vulnerable to Incorrect Access Control via the \"Porlet Deployer\" which allows administrators to deploy .WAR portlets.","aliases":["GHSA-28wg-8gv4-mpjf"],"modified":"2026-04-12T09:35:22.487910Z","published":"2023-12-13T14:15:44.200Z","references":[{"type":"WEB","url":"http://silverpeas.com"},{"type":"EVIDENCE","url":"https://github.com/RhinoSecurityLabs/CVEs/tree/master/CVE-2023-47321"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/silverpeas/silverpeas-core","events":[{"introduced":"0"},{"fixed":"be7d7d580572c31f28e80e84dc3813c4ae6f6bd2"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"6.3.2"}],"cpe":"cpe:2.3:a:silverpeas:silverpeas:*:*:*:*:*:*:*:*","source":"CPE_FIELD"}}],"versions":["6.0-alpha1","6.0-alpha2","6.0-alpha3","6.0-beta1","6.0-rc1","6.0-rc2","6.0-rc3","6.3","core-5.11","core-5.12","core-5.6","core-5.7"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-47321.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N"}]}