4 matches found
CVE-2023-2523
A vulnerability was found in Weaver E-Office 9.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file App/Ajax/ajax.php?action=mobileuploadsave. The manipulation of the argument uploadquwan leads to unrestricted upload. The attack may be launched...
CVE-2023-2523
A vulnerability was found in Weaver E-Office 9.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file App/Ajax/ajax.php?action=mobileuploadsave. The manipulation of the argument uploadquwan leads to unrestricted upload. The attack may be launched...
CVE-2023-2523
CVE-2023-2523 (Weaver E-Office 9.5) A remote unrestricted file upload vulnerability exists in Weaver E-Office 9.5 via the endpoint App/Ajax/ajax.php?action=mobile_upload_save, where the upload_quwan parameter enables uploading arbitrary files. The issue is exploitable remotely and has been public...
CVE-2023-2523 Weaver E-Office unrestricted upload
A vulnerability was found in Weaver E-Office 9.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file App/Ajax/ajax.php?action=mobileuploadsave. The manipulation of the argument uploadquwan leads to unrestricted upload. The attack may be launched...