CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5796 – CodeAstro POS System Logo setting unrestricted upload
https://notcve.org/view.php?id=CVE-2023-5796
A vulnerability was found in CodeAstro POS System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /setting of the component Logo Handler. The manipulation leads to unrestricted upload. The attack may be launched remotely. • https://drive.google.com/file/d/1LIXuVmxby4QTY7v7dD-F0oRnwVVOwlmJ/view?usp=sharing https://vuldb.com/?ctiid.243602 https://vuldb.com/?id.243602 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-5795 – CodeAstro POS System Profile Picture profil unrestricted upload
https://notcve.org/view.php?id=CVE-2023-5795
A vulnerability was found in CodeAstro POS System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /profil of the component Profile Picture Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. • https://drive.google.com/file/d/1bjDpJdG28Q5-RGJB89Dzw6YzZ1VHN23X/view?usp=sharing https://vuldb.com/?ctiid.243601 https://vuldb.com/?id.243601 • CWE-434: Unrestricted Upload of File with Dangerous Type •