← back
CVE-2023-0651

FastCMS Template Management unrestricted upload

CVSS 5.3 MEDIUMEPSS 0.8%CWE-434
A vulnerability was found in FastCMS 0.1.0. It has been classified as critical. Affected is an unknown function of the component Template Management. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Affected products
n/a · FastCMS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/linmoren/fastcms_bug/blob/main/password.ziphttps://github.com/linmoren/fastcms_bug/blob/main/template_files_upload.mdhttps://vuldb.com/?ctiid.220038https://vuldb.com/?id.220038https://vuldb.com/?submit.82316