Security Advisory

CVE-2023-27397

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-23 00:00:00

Last updated 2025-01-31 13:55:13

Assigner jpcert

State PUBLISHED

Description

Unrestricted upload of file with dangerous type exists in MicroEngine Mailform version 1.1.0 to 1.1.8. If the products file upload function and server save option are enabled, a remote attacker may save an arbitrary file on the server and execute it.

← Browse all CVEs View on cve.org ↗