CVE-2023-4559

CVSS 3.1 Score 9.6 of 10 (high)

Details

Published Aug 27, 2023
Updated: May 17, 2024
CWE ID 94

Summary

CVE-2023-4559 is a newly disclosed critical vulnerability that affects the Bettershop LaikeTui platform. The issue lies within the POST Request Handler's file index.php?module=api&action=user&m=upload component, which allows for unrestricted uploads. This vulnerability can be exploited remotely. The product uses a rolling release model for continuous delivery, making it difficult to determine the affected and patched versions. An identifier for this vulnerability has been assigned as VDB-238160.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share