CVE-2020-23138
Summary (CVE-2020-23138) : Microweber 1.1.18 admin page has an unrestricted file upload vulnerability. An attacker can upload PHP code (or other extensions such as .exe) by providing image data with the image/jpeg content type and a .php extension, enabling remote code execution on the web server...