48 matches found
CVE-2023-38836
File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header to bypass MIME type checks...
CVE-2023-38836
File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header to bypass MIME type checks...
BoidCMS 代码问题漏洞
BoidCMS is a free open source flat file CMS for building simple websites and blogs, developed in PHP and using JSON as the database. A code issue vulnerability exists in BoidCMS version v.2.0.0, which originates from a vulnerability that allows remote attackers to execute arbitrary code via the G...
CVE-2023-38836
File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header to bypass MIME type checks...
CVE-2023-38836
CVE-2023-38836 — BoidCMS 2.0.0 (and below) suffers an authenticated file-upload vulnerability that allows a malicious user to upload a PHP file disguised as media with a GIF header, bypassing MIME type checks and leading to remote code execution. Public references (Metasploit module, PacketStorm/...
CVE-2023-38836
File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header to bypass MIME type checks...
Exploit for Unrestricted Upload of File with Dangerous Type in Boidcms
CVE-2023-38836 Exploit File Upload vulnerability in BoidCMS v...
PT-2023-26619 · Boidcms · Boidcms
Name of the Vulnerable Software and Affected Versions: BoidCMS version 2.0.0 Description: A remote attacker can execute arbitrary code by exploiting a file upload vulnerability in BoidCMS. This is achieved by adding a GIF header to bypass MIME type checks, allowing the attacker to execute code vi...