Lucene search
PRIOn knowledge basePRION:CVE-2023-52085HistoryDec 29, 2023 - 12:15 a.m.
Use after free
2023-12-2900:15:00
PRIOn knowledge base
www.prio-n.com
4
use after free
winter cms
colorpicker formwidget
local file inclusion
patched
nvd
Winter is a free, open-source content management system. Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be included without further processing in the compilation of custom stylesheets via LESS. This had the potential to lead to a Local File Inclusion vulnerability. This issue has been patched in v1.2.4.
Related
osv
osv
Winter CMS Local File Inclusion through Server Side Template Injection
2024-01-02 14:10:26
CVE-2023-52085
2023-12-29 00:15:50
nvd
nvd
CVE-2023-52085
2023-12-29 00:15:50
veracode
veracode
Local File Inclusion
2023-12-29 08:38:47
github
github
Winter CMS Local File Inclusion through Server Side Template Injection
2024-01-02 14:10:26
cve
cve
CVE-2023-52085
2023-12-29 00:15:50
nuclei
nuclei
Winter CMS Local File Inclusion - (LFI)
2024-02-02 10:08:58
cvelist
cvelist