CVE-2023-51350
9.8CRITICALA spoofing attack in ujcms v.8.0.2 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to the X-Forwarded-For function in the header.
Published: 1/11/2024Updated: 6/16/2025
Description
A spoofing attack in ujcms v.8.0.2 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted script to the X-Forwarded-For function in the header.
AI AnalysisPowered by AI
Affected Products
ujcmsujcms
8.0.2
References
- https://github.com/ujcms/ujcmsProduct
- https://github.com/ujcms/ujcms/issues/7ExploitIssue TrackingThird Party Advisory
- https://www.ujcms.com/Product
- https://github.com/ujcms/ujcmsProduct
- https://github.com/ujcms/ujcms/issues/7ExploitIssue TrackingThird Party Advisory
- https://www.ujcms.com/Product