3 matches found
CVE-2023-41357 Galaxy Software Services Vitals ESP - Arbitrary File Upload
Galaxy Software Services Corporation Vitals ESP is an online knowledge base management portal, it has insufficient filtering and validation during file upload. An authenticated remote attacker with general user privilege can exploit this vulnerability to upload and execute scripts onto arbitrary...
CVE-2023-41357 Galaxy Software Services Vitals ESP - Arbitrary File Upload
Galaxy Software Services Corporation Vitals ESP is an online knowledge base management portal, it has insufficient filtering and validation during file upload. An authenticated remote attacker with general user privilege can exploit this vulnerability to upload and execute scripts onto arbitrary...
CVE-2023-41357
CVE-2023-41357 affects Galaxy Software Services Corporation Vitals ESP, a knowledge base management portal. The issue is insufficient filtering/validation during file uploads in the authenticated user context, allowing an attacker with general user privileges to upload and execute scripts in arbi...