Vulnerabilities (CVE)

Filtered by vendor Xzjie Cms Project Subscribe
Filtered by product Xzjie Cms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-1484 1 Xzjie Cms Project 1 Xzjie Cms 2024-11-21 6.5 MEDIUM 6.3 MEDIUM
A vulnerability was found in xzjie cms up to 1.0.3 and classified as critical. This issue affects some unknown processing of the file /api/upload. The manipulation of the argument uploadFile leads to unrestricted upload. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-223367.