1 results (0.001 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-2523 – Weaver E-Office unrestricted upload
https://notcve.org/view.php?id=CVE-2023-2523
A vulnerability was found in Weaver E-Office 9.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file App/Ajax/ajax.php?action=mobile_upload_save. The manipulation of the argument upload_quwan leads to unrestricted upload. • https://github.com/Any3ite/CVE-2023-2523 https://github.com/RCEraser/cve/blob/main/Weaver.md https://vuldb.com/?ctiid.228014 https://vuldb.com/?id.228014 • CWE-434: Unrestricted Upload of File with Dangerous Type •