6 matches found
CVE-2023-26968
In Atrocore 1.5.25, the Create Import Feed option with glyphicon-glyphicon-paperclip function is vulnerable to Unauthenticated File upload...
CVE-2023-26968
In Atrocore 1.5.25, the Create Import Feed option with glyphicon-glyphicon-paperclip function is vulnerable to Unauthenticated File upload...
Unrestricted file upload
In Atrocore 1.5.25, the Create Import Feed option with glyphicon-glyphicon-paperclip function is vulnerable to Unauthenticated File upload...
CVE-2023-26968
In Atrocore 1.5.25, the Create Import Feed option with glyphicon-glyphicon-paperclip function is vulnerable to Unauthenticated File upload...
PT-2023-20879 · Atrocore · Atrocore
Name of the Vulnerable Software and Affected Versions: Atrocore version 1.5.25 Description: The Create Import Feed option with the glyphicon-glyphicon-paperclip function in Atrocore is vulnerable to unauthenticated file upload. This issue allows unauthorized users to upload files without proper...
CVE-2023-26968
CVE-2023-26968 affects Atrocore 1.5.25: the Create Import Feed option with the glyphicon-glyphicon-paperclip function is vulnerable to unauthenticated file upload. CVSS v3.1 shows/quotes a Critical rating (9.8) with Network access, no privileges, no user interaction required, and high impact to c...