2 matches found
CVE-2023-39115
install/aiz-uploader/upload in Campcodes Online Matrimonial Website System Script 3.3 allows XSS via a crafted SVG document...
CVE-2023-39115
CVE-2023-39115 affects Campcodes Online Matrimonial Website System Script 3.3. the vulnerability is an arbitrary file upload via a crafted SVG, enabling code execution (SVG contains script and external navigation). Root cause: insufficient validation of uploaded SVG files. Affected component: ins...