CVE-2023-53869

Vulnerability Description

WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server.

Related Weaknesses (CWE)

CWE-434

References

https://webigniter.net/
https://www.exploit-db.com/exploits/51736
https://www.vulncheck.com/advisories/webigniter-unrestricted-file-upload-remote-

FAQ

What is CVE-2023-53869?

CVE-2023-53869 is a documented vulnerability. WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created acc...

How severe is CVE-2023-53869?

CVSS scoring is not yet available for CVE-2023-53869. Check NVD for updates.

Is there a patch for CVE-2023-53869?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.