How severe is CVE-2023-38947?

CVE-2023-38947 has a CVSS v3 score of 7.2 (HIGH).

CVE-2023-38947

Name: wbce_cms
Author: wbce

7.2HIGH

An arbitrary file upload vulnerability in the /languages/install.php component of WBCE CMS v1.6.1 allows attackers to execute arbitrary code via a crafted PHP file.

发布于: 8/3/2023更新于: 11/21/2024

描述

An arbitrary file upload vulnerability in the /languages/install.php component of WBCE CMS v1.6.1 allows attackers to execute arbitrary code via a crafted PHP file.

AI分析AI驱动

受影响产品

wbcewbce_cms

1.6.1

参考资料

https://gitee.com/CTF-hacker/pwn/issues/I7LH2N
ExploitIssue TrackingThird Party Advisory
https://github.com/capture0x/WBCE_CMS
https://packetstormsecurity.com/files/176018/WBCE-CMS-1.6.1-Shell-Upload.html
https://gitee.com/CTF-hacker/pwn/issues/I7LH2N
ExploitIssue TrackingThird Party Advisory
https://github.com/capture0x/WBCE_CMS
https://packetstormsecurity.com/files/176018/WBCE-CMS-1.6.1-Shell-Upload.html