CVE-2023-5965 | EspoCRM up to 7.5.2 ZIP File unrestricted upload

Inserito da Angelo Barbosa | Nov 30, 2023 | CVE

A vulnerability classified as problematic has been found in EspoCRM up to 7.5.2. Affected is an unknown function of the component ZIP File Handler. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2023-5965. It is possible to launch the attack remotely. There is no exploit available.

CVE-2023-5965 | EspoCRM up to 7.5.2 ZIP File unrestricted upload

Post correlati

CVE-2024-0776 | LinZhaoguan pb-cms 2.0 Comment cross site scripting

CVE-2024-5161 | Magical Addons for Elementor Plugin up to 1.1.39 on WordPress cross site scripting

CVE-2024-7928 | FastAdmin up to 1.3.3.20220121 /index/ajax/lang path traversal

CVE-2024-3285 | MetaSlider Slider, Gallery, and Carousel Plugin up to 3.70.0 on WordPress Shortcode cross site scripting