4 matches found
CVE-2023-4159
Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3...
CVE-2023-4159 Unrestricted Upload of File with Dangerous Type in omeka/omeka-s
Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3...
CVE-2023-4159 Unrestricted Upload of File with Dangerous Type in omeka/omeka-s
Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3...
CVE-2023-4159
CVE-2023-4159 affects Omeka-S before 4.0.3. The issue is an unrestricted file upload vulnerability where a malicious file can bypass whitelist checks by using Magic Bytes (GIF87a) to upload dangerous code (e.g., shell_php.hphp), enabling remote code execution when commands are run via the uploade...