CVE-2023-7150 | Chic Beauty Salon 20230703 Product product-list.php unrestricted upload

Posted by Angelo Barbosa | Dec 28, 2023 | CVE

A vulnerability classified as critical was found in Chic Beauty Salon 20230703. Affected by this vulnerability is an unknown functionality of the file product-list.php of the component Product Handler. The manipulation leads to unrestricted upload.

This vulnerability is known as CVE-2023-7150. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2023-7150 | Chic Beauty Salon 20230703 Product product-list.php unrestricted upload

Related Posts

CVE-2024-45586 | Symphony Fintech XTS Web Trader/XTS Mobile Trader 2.0.0.1_P160 Authentication Module authorization (CIVN-2024-0281)

CVE-2024-39517 | Juniper Networks Junos OS/Junos OS Evolved Layer 2 Address Learning Daemon unusual condition (JSA79175)

CVE-2024-40476 | SourceCodester Best House Rental Management System 1.0 Delete Tenant Action ajax.php cross-site request forgery

CVE-2024-8778 | SYSCOM Group OMFLOW up to 1.2.1.2 System Files absolute path traversal