Vulnerability CVE-2023-23333


Published: 2023-02-06

Description:
There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.

See advisories in our WLB2 database:
Topic
Author
Date
High
SolarView Compact 6.00 Command Injection
ByteHunter
20.03.2024
High
SolarView Compact 6.00 - Command Injection Bypass authentication
parsa rezaie kh...
30.03.2024

Type:

CWE-78

(Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') )

 References:
https://github.com/Timorlover/CVE-2023-23333

Copyright 2024, cxsecurity.com

 

Back to Top