Lucene search

K
cvelistMitreCVELIST:CVE-2023-38836
HistoryAug 21, 2023 - 12:00 a.m.

CVE-2023-38836

2023-08-2100:00:00
mitre
www.cve.org
boidcms
file upload
gif header
mime type
arbitrary code

9.1 High

AI Score

Confidence

High

0.673 Medium

EPSS

Percentile

98.0%

File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header to bypass MIME type checks.

9.1 High

AI Score

Confidence

High

0.673 Medium

EPSS

Percentile

98.0%