3 matches found
CVE-2023-44962
CVE-2023-44962 affects Koha Library Software versions 23.05.04 and earlier. The root cause is lack of filtering of the client-supplied path in the upload-cover-image.pl component, enabling an attacker to read arbitrary files. The PT-2023-5947 advisory adds detail: exploitation can involve uploadi...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44962
creationtimestamp| type| source ---|---|--- 2023-10-06 11:01:41+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9151 2023-10-11 04:59:54+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5363 2023-10-11 22:17:35+00:00| seen| https://t.me/cibsecurity/72136...