A File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS).
References
Link | Resource |
---|---|
https://github.com/sromanhu/CVE-2023-43871-WBCE-Arbitrary-File-Upload--XSS---Media/blob/main/README.md | Exploit Third Party Advisory |
https://github.com/sromanhu/WBCE-File-Upload--XSS---Media/blob/main/README.md | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-28T00:00:00
Updated: 2023-10-10T22:27:43.678786
Reserved: 2023-09-25T00:00:00
Link: CVE-2023-43871
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-28T14:15:23.883
Modified: 2023-11-08T03:12:47.157
Link: CVE-2023-43871
JSON object: View
Redhat Information
No data.
CWE