What is CVE-2023-53944?

CVE-2023-53944 is a medium-severity vulnerability in Easyphp Webserver, classified under Path Traversal. CVSS score: 6.5/10. Published 2025-12-18.

How severe is CVE-2023-53944?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Path Traversal in Easyphp Webserver

CVE-2023-53944

EasyPHP Webserver 14.1 contains a path traversal vulnerability that allows remote users with low privileges to access files outside the document root by bypassing SecurityManager restrictions. Attackers can send GET requests with encoded d…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.002 (39.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Easyphp Webserver — versions 14.1

Weakness classification (CWE)

CWE-22 — Path Traversal

References

ExploitDB-51430 (exploit)
Official Product Homepage (product)
VulnCheck Advisory: EasyPHP Webserver 14.1 Path Traversal via Directory Traversal Sequences (third-party-advisory)

Frequently asked questions

What is CVE-2023-53944?: CVE-2023-53944 is a medium-severity vulnerability in Easyphp Webserver, classified under Path Traversal. CVSS score: 6.5/10. Published 2025-12-18.
How severe is CVE-2023-53944?: Medium severity. CVSS v3 base score is 6.5 out of 10.