2 matches found
CVE-2023-23328
creationtimestamp| type| source ---|---|--- 2023-03-11 00:27:32+00:00| seen| https://t.me/cibsecurity/59854 2025-03-04 21:35:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6427...
CVE-2023-23328
The CVE-2023-23328 issue affects AvantFAX 3.3.7 where an authenticated user can bypass PHP file type validation in FileUpload.php by uploading a specially crafted PHP file, enabling a file upload vulnerability with likely high impact to confidentiality, integrity, and availability per reported CV...