How severe is CVE-2023-38947?

CVE-2023-38947 has a CVSS v3 score of 7.2 (HIGH).

CVE-2023-38947

Name: wbce_cms
Author: wbce

7.2HIGH

An arbitrary file upload vulnerability in the /languages/install.php component of WBCE CMS v1.6.1 allows attackers to execute arbitrary code via a crafted PHP file.

公開日: 8/3/2023更新日: 11/21/2024

説明

An arbitrary file upload vulnerability in the /languages/install.php component of WBCE CMS v1.6.1 allows attackers to execute arbitrary code via a crafted PHP file.

AI分析AIによる分析

影響を受ける製品

wbcewbce_cms

1.6.1

参照

https://gitee.com/CTF-hacker/pwn/issues/I7LH2N
ExploitIssue TrackingThird Party Advisory
https://github.com/capture0x/WBCE_CMS
https://packetstormsecurity.com/files/176018/WBCE-CMS-1.6.1-Shell-Upload.html
https://gitee.com/CTF-hacker/pwn/issues/I7LH2N
ExploitIssue TrackingThird Party Advisory
https://github.com/capture0x/WBCE_CMS
https://packetstormsecurity.com/files/176018/WBCE-CMS-1.6.1-Shell-Upload.html