1 results (0.001 seconds)
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-6274 – Byzoro Smart S80 PHP File updatelib.php unrestricted upload
https://notcve.org/view.php?id=CVE-2023-6274
A vulnerability was found in Byzoro Smart S80 up to 20231108. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /sysmanage/updatelib.php of the component PHP File Handler. The manipulation of the argument file_upload leads to unrestricted upload. The attack can be launched remotely. • https://github.com/Carol7S/cve/blob/main/rce.md https://vuldb.com/?ctiid.246103 https://vuldb.com/?id.246103 https://vuldb.com/?submit.234888 • CWE-434: Unrestricted Upload of File with Dangerous Type •