← back
CVE-2023-4393

HTML and SMTP Injection in LiquidFiles

CVSS 5.4 MEDIUMEPSS 0.3%CWE-116CWE-147
HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Affected products
LiquidFiles Pty Ltd · LiquidFiles

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.themissinglink.com.au/security-advisories/cve-2023-4393