2 matches found
CVE-2023-40023
The CVE-2023-40023 issue affects the Yak Engine (Yaklang) plugin’s Fuzztag component, which contains a Local File Inclusion (LFI) flaw that can allow an attacker to read files from the server’s local filesystem via the web application. Affected are versions prior to 1.2.4-sp1; the vulnerability i...
CVE-2023-40023 Yaklang Plugin's Fuzztag Component Allows Unauthorized Local File Reading
yaklang is a programming language designed for cybersecurity. The Yak Engine has been found to contain a local file inclusion LFI vulnerability. This vulnerability allows attackers to include files from the server's local file system through the web application. When exploited, this can lead to t...