3 matches found
CVE-2023-4097
The file upload functionality is not implemented correctly and allows uploading of any type of file. As a prerequisite, it is necessary for the attacker to log into the application with a valid username...
CVE-2023-4097 Multiple vulnerabilities in IDM Sistemas QSige
The file upload functionality is not implemented correctly and allows uploading of any type of file. As a prerequisite, it is necessary for the attacker to log into the application with a valid username...
CVE-2023-4097
CVE-2023-4097 affects IDM Sistemas QSige. The issue is a file upload vulnerability where the upload function accepts any file type due to improper implementation, requiring an authenticated user. Impact is reported as high (C/H/I/A) with CVSS v3.1 base score 8.8. Documented details do not specify...