2 matches found
CVE-2023-26852
An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP file...
CVE-2023-26852
The CVE concerns Textpattern CMS versions 4.8.8 and earlier, where the upload plugin allows uploading crafted PHP files, enabling arbitrary code execution. The underlying issue is an arbitrary file upload vulnerability in the upload component, yielding potential remote code execution with network...