Vulnerability CVE-2023-43872
Published: 2023-09-28

Description:
A File upload vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS).

 References:
https://github.com/sromanhu/CMSmadesimple-File-Upload--XSS---File-Manager
Copyright 2026, cxsecurity.com

 

Back to Top