CVE-2023-39377

SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method
References
Link Resource
https://www.gov.il/en/Departments/faq/cve_advisories Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:siberiancms:siberiancms:*:*:*:*:*:*:*:*
cpe:2.3:a:siberiancms:siberiancms:*:*:*:*:*:*:*:*

History

27 Sep 2023, 18:43

Type Values Removed Values Added
References (MISC) https://www.gov.il/en/Departments/faq/cve_advisories - (MISC) https://www.gov.il/en/Departments/faq/cve_advisories - Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.2
First Time Siberiancms siberiancms
Siberiancms
CPE cpe:2.3:a:siberiancms:siberiancms:*:*:*:*:*:*:*:*

27 Sep 2023, 15:40

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-27 15:18

Updated : 2024-02-28 20:33


NVD link : CVE-2023-39377

Mitre link : CVE-2023-39377

CVE.ORG link : CVE-2023-39377


JSON object : View

Products Affected

siberiancms

  • siberiancms
CWE
CWE-434

Unrestricted Upload of File with Dangerous Type