3 matches found
CVE-2023-48371
ITPison OMICARD EDM’s file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker can exploit this vulnerability to upload and run arbitrary executable files to perform arbitrary system commands or disrupt service...
CVE-2023-48371
ITPison OMICARD EDM is affected by CVE-2023-48371 due to a file upload feature that does not restrict dangerous file types. An unauthenticated remote attacker can upload and execute arbitrary executables, enabling arbitrary system commands or disruption of service. Documents reference affected ve...
CVE-2023-48371 ITPison OMICARD EDM 's SMS - Arbitrary File Upload
ITPison OMICARD EDM’s file uploading function does not restrict upload of file with dangerous type. An unauthenticated remote attacker can exploit this vulnerability to upload and run arbitrary executable files to perform arbitrary system commands or disrupt service...